Distributing Access Applications

the front end is not an "mde" so that I am able to provide patches and
updates to it. I have code include that automatically seeks out the
back end whenever patches and updates are provided,
Gee, I would use a mde, and just simply supply a new mde for each update.
There is a LOT OF risk disturbing a mdb front end. Are you going to pay for
support problems as results of users modifying the application? (no to
mention the exposure of your code etc.). I would REALLY think long and hard
about this.

Some of the difficulties he sites in this article include: (edit for
space)

A. The many different versions and formats of Office that exist.
Installing an application built in Access 2000 might, for instance,
break Access 97 applications already residing on the user's computer.
Access has a significant impact on registry settings.
Of course, any developer who is actually developing office appcltions knows
that mixing and matching office appcltions can cause problems. This should
come as no surprise. If you are so far as to start disturbing an
application, surly you must have come across the concept that mixing
versions of ms-access on a pc is full of danger? Remember, the runtime is no
different in this regards, and I am not sure why you would think so?
All in all, you'll invest about US$1,000 in installation software, and
have to master creating distribution packages before you'll be able to
confidently send out software to install."
Setting up the software install of your application is going to be
sizeable portion of your software budget. Microsoft had 80 full time people
on JUST tin their installer for Excel at one time. Welcome to the world of
software development! You can't scrimp on setting up the install.
Obviously this is new territory for you.

Finally he suggests that, "If you haven't already looked at it the
VB.Net development environment is pretty cool and runs well on most
modern win operating systems."
The above suggestion is simply suggesting that for wide distribution, you
might want to avoid using ms-office (access) and consider writing the
application in VB.net, or something designed with larger distribution in
mind.

My Concerns:

1. I have invested lots of bucks in purchasing MS Office Developer
Editions and all the upgrades in between over the past 5 years
Ah, ok, then you are not new to the problems of installing and setting up
ms-access on a mixed platforms. For a second, I thought you might be new to
development.
Now it is being suggested that I'll have to, ". . . invest about
still another US$1,000 in installation software." The
"InstallShield" software alone cost approximately, $1,200.00 bucks.
$1,200 is not much these days. Heck the developer edition of office is $800
(very cheap). The professional developer edition of vb used to be a lot more
then the above two combined.

However, companies like sagkey make scripts for Wise, InstlalSheild, or MSI.
Msi is the Microsoft installer (purchase from wise). You can use the MSI
installer included with the developer edition of office.

However, developing your own scripts can take a lot of time. You can
purchase
scripts from sagkey for the MSI. Purchasing the scripts from sage key sounds
like really good idea, and is only $425. If you can develop a good install
script in less then two days of programmer time, then I guess $425 sounds
expensive. To me, that is bargain, and for $425 of my time, I can't come
even close creating my own scripts.

Is this for real; is the cost of this additional investment that is
being suggested really necessary?
No, you don't have to purchase all the of experience and problems and
learning that the folks at sagkey went through. You can spend the time (many
months) of learning what does, and what does not work (and, your customers
will not be too happy either as you learn on their frustration!).
2. Is VB.Net intended to replace AccessXP Developers Edition? Dumb
question time; what does MS Access Developers Edition have to do with
VB.Net; what impact do they have on each other?
As mentioned, the author of those comments is suggesting that since
ms-access is
tied to a particular version of office (with all of the problems), then you
might want to consider developing with something else other then office.
However, the developer edition of office is being changed to a development
kit that will ship with Visual Studio. This is likely a VERY GOOD thing!

3. When I include the Access Runtime in my packages (and force use
the, "\runtime switch") switch") and if I am not making ANY references
to Outlook, MS Word, or Excel, etc. in my Access library, shouldn't
that address any issue regarding what is properly referenced or What
gets add to the registry?

backend_be.mde
backend_be.mde

2. Is VB.Net intended to replace AccessXP Developers Edition? Dumb
question time; what does MS Access Developers Edition have to do with
VB.Net; what impact do they have on each other?

As mentioned, the author of those comments is suggesting that since
ms-access is
tied to a particular version of office (with all of the problems), then you
might want to consider developing with something else other then office.
However, the developer edition of office is being changed to a development
kit that will ship with Visual Studio. This is likely a VERY GOOD thing!

E. I will have code for a, "a-number-of-days" expiration that will
also prevent calendar "rollbacks", plus the ability to extend
demo/beta calendar periods; "amenities that I feel should be included
in MS Access Developers Edition. But, that's another post I guest.

Tools available from sites such as sysinternals.com can crack any
method you use to store a future date anywhere on a system such
as in the registry or a file.

A good hacker/cracker can break the code, or can just find where the
information is being stored or checked and bypass that check. Encryption
isn't failproof.

You can go to the warez sites and get cracks that bypass ownershp checks on most any heavy-duty security commercial software. It pays, however, to be
very cautious if one does this, even if you don't get caught for copyright
violation. Fake cracks are a vehicle of choice for virus authors, and a
virus that is only far enough along to be piggybacking on a fake crack may
not yet be in the AV list.

Larry Linson

"TC" <a@b.c.d> wrote in message news:1063520736.498942@teuthos...

"Tony Toews" <tt****@telusplanet.net> wrote in message
news:ll********************************@4ax.com...

Tools available from sites such as sysinternals.com can crack any
method you use to store a future date anywhere on a system such
as in the registry or a file.

Here we go again! Why do you keep saying this? As I have said before,

values

can be encrypted & checksummed to stop the user making any sense of them, or

changing them, or even resetting them to previous values.

Think about it! Take the data that is transmitted from one bank to

another,

to effect a transaction. Is that data secure because it is hidden away

out of sight, where no-one can see it? Would it become *insecure* if someone
could tap the lines, & print it out? No. You could publish the whole data packet on the front page of the daily news, & it would *still* be secure, because it has been encryted & checksummed.

I don't like to keep harping on about this, & I am not trying to have a go at you - but you do keep repeating this misinformation :-)

TC

Most financial institutions use a two-person method to help ensure that
this level isn't broken, but not all do that. And there have been
cases where even that methodology of security has been bypassed by
willing (or unquestioning) co-workers.
Extracting a 3DES key from an IBM 4758
Summary
The IBM 4758 is an extremely secure cryptographic co-processor. It is used
by banking systems and in other security conscious applications to hold
keying material. It is designed to make it impossible to extract this keying
material unless you have the correct permissions and can involve others in a
conspiracy.

We are able, by a mixture of sleight-of-hand and raw processing power, to
persuade an IBM 4758 running IBM's ATM (cash machine) support software
called the "Common Cryptographic Architecture" (CCA) to export any and all
of this program's DES and 3DES keys to us. All we need is:

about 20 minutes uninterrupted access to the device
one person's ability to use the Combine_Key_Parts permission
a standard off-the-shelf $995 FPGA evaluation board from Altera
about two days of "cracking" time In the end, there *is* no such thing as a 'perfect' system. Period.
Anyone who believes otherwise hasn't thought things through, or is
making assumptions on conditions which may not be as accurate as they
think.
--
Your Boss Is Thinking About You.

Most financial institutions use a two-person method to help ensure
that this level isn't broken, but not all do that. And there have been
cases where even that methodology of security has been bypassed by
willing (or unquestioning) co-workers.
Amazingly, the 2-person method has been broken! Researchers have found out
(and published!) how to extract the 3DES keys from an IBM 4758
crytoprocessor running CCA, with nothing more than:
o 20 minutes uninterrupted access to the device,
o one person's ability to use the Combine_Key_Parts permission,
o a standard off-the-shelf <$1000 FPGA evaluation board, and
o about two days of elapsed "cracking" time.
In the end, there *is* no such thing as a 'perfect' system. Period.
Anyone who believes otherwise hasn't thought things through, or is
making assumptions on conditions which may not be as accurate as they
think.