Hi All,
I have an MDB file which I want to remain secure. It checks for certain
parameters upon startup, and will automatically exit if the program is
opened/executed by an unauthorized user.
My concern is that somebody could read the MDB file using a utility such as
MDB Tools ( http://mdbtools.sourceforge.net/) and then export the data from
my file. I have not used this tool, so is that actually possible using
this or some other method?
Is an MDE file more secure from this standpoint? The bottom line is that I
want to prevent anyone from gaining access to my data by parsing the MDB or
MDE file.
Thanks,
Norm 7 3244
"Norm" <od*****@comcast.net> wrote in message
news:Xn******************************@216.196.97.1 36 Hi All,
I have an MDB file which I want to remain secure. It checks for certain parameters upon startup, and will automatically exit if the program is opened/executed by an unauthorized user.
My concern is that somebody could read the MDB file using a utility such as MDB Tools (http://mdbtools.sourceforge.net/) and then export the data from my file. I have not used this tool, so is that actually possible using this or some other method?
Is an MDE file more secure from this standpoint? The bottom line is that I want to prevent anyone from gaining access to my data by parsing the MDB or MDE file.
Thanks, Norm
An MDE is no more secure than an MDB for the data. An MDE only secures
your design by removing the design versions of your forms/reports/code
etc.
If you want to secure your data you will need to use a database password
to prevent entry or use Workgroup security.
--
regards,
Bradley
"Bradley..... .." <b.***********@c.o.m.c.e.n..c.o.m..a.u> wrote in
news:SN*******************@news-server.bigpond.net.au: "Norm" <od*****@comcast.net> wrote in message news:Xn******************************@216.196.97.1 36 Hi All,
I have an MDB file which I want to remain secure. It checks for certain parameters upon startup, and will automatically exit if the program is opened/executed by an unauthorized user.
My concern is that somebody could read the MDB file using a utility such as MDB Tools (http://mdbtools.sourceforge.net/) and then export the data from my file. I have not used this tool, so is that actually possible using this or some other method?
Is an MDE file more secure from this standpoint? The bottom line is that I want to prevent anyone from gaining access to my data by parsing the MDB or MDE file.
Thanks, Norm
An MDE is no more secure than an MDB for the data. An MDE only secures your design by removing the design versions of your forms/reports/code etc.
If you want to secure your data you will need to use a database password to prevent entry or use Workgroup security.
Thanks for the reply.
The problem isn't preventing access to the database - I already have a
security check for that. I'm concerned with someone using a tool to
open up my MDB file and then export the data directly from the file.
That would bypass the Access application, and whatever
password/workgroup security that might have been set.
Norm
On Mon, 05 Jul 2004 17:51:36 -0500, Norm <od*****@comcast.net> wrote:
Standard admonition: workgroup security is an advanced topic.
Download, study, and fully understand the Access Security FAQ from
microsoft.com before proceeding.
But then workgroup security can be broken by cheap password crackers
available on the internet.
If you are really concerned about data security, Access is not the
best storage space. Consider MSDE (ships with Access 2000 and above)
or its bigger cousin SQL Server Standard Edition.
-Tom. "Bradley..... .." <b.***********@c.o.m.c.e.n..c.o.m..a.u> wrote in news:SN*******************@news-server.bigpond.net.au:
"Norm" <od*****@comcast.net> wrote in message news:Xn******************************@216.196.97.1 36 Hi All,
I have an MDB file which I want to remain secure. It checks for certain parameters upon startup, and will automatically exit if the program is opened/executed by an unauthorized user.
My concern is that somebody could read the MDB file using a utility such as MDB Tools (http://mdbtools.sourceforge.net/) and then export the data from my file. I have not used this tool, so is that actually possible using this or some other method?
Is an MDE file more secure from this standpoint? The bottom line is that I want to prevent anyone from gaining access to my data by parsing the MDB or MDE file.
Thanks, Norm
An MDE is no more secure than an MDB for the data. An MDE only secures your design by removing the design versions of your forms/reports/code etc.
If you want to secure your data you will need to use a database password to prevent entry or use Workgroup security.
Thanks for the reply.
The problem isn't preventing access to the database - I already have a security check for that. I'm concerned with someone using a tool to open up my MDB file and then export the data directly from the file. That would bypass the Access application, and whatever password/workgroup security that might have been set.
Norm
"Norm" <od*****@comcast.net> wrote in message
news:Xn*******************************@216.196.97. 136 "Bradley..... .." <b.***********@c.o.m.c.e.n..c.o.m..a.u> wrote in news:SN*******************@news-server.bigpond.net.au:
"Norm" <od*****@comcast.net> wrote in message news:Xn******************************@216.196.97.1 36 Hi All,
I have an MDB file which I want to remain secure. It checks for certain parameters upon startup, and will automatically exit if the program is opened/executed by an unauthorized user.
My concern is that somebody could read the MDB file using a utility such as MDB Tools (http://mdbtools.sourceforge.net/) and then export the data from my file. I have not used this tool, so is that actually possible using this or some other method?
Is an MDE file more secure from this standpoint? The bottom line is that I want to prevent anyone from gaining access to my data by parsing the MDB or MDE file.
Thanks, Norm
An MDE is no more secure than an MDB for the data. An MDE only secures your design by removing the design versions of your forms/reports/code etc.
If you want to secure your data you will need to use a database password to prevent entry or use Workgroup security.
Thanks for the reply.
The problem isn't preventing access to the database - I already have a security check for that. I'm concerned with someone using a tool to open up my MDB file and then export the data directly from the file. That would bypass the Access application, and whatever password/workgroup security that might have been set.
Norm
If you don't have "real" Access security then anyone can probably import
data from your database.
Unfortunately there are also plenty of nasty tools to make all of your
security moot anyway :)
--
regards,
Bradley
Norm <od*****@comcast.net> wrote: The problem isn't preventing access to the database - I already have a security check for that. I'm concerned with someone using a tool to open up my MDB file and then export the data directly from the file. That would bypass the Access application, and whatever password/workgroup security that might have been set.
Then you'd want to use the database password which encrypts the entire MDB. Which,
IIRC, has many utility programs out there which can decrypt the MDB. http://www.lostpassword.com/access.htm. Or for A97/Jet 3.5 it's free. http://www.trigeminal.com/lang/1033/codes.asp?ItemID=5
Tony
--
Tony Toews, Microsoft Access MVP
Please respond only in the newsgroups so that others can
read the entire thread of messages.
Microsoft Access Links, Hints, Tips & Accounting Systems at http://www.granite.ab.ca/accsmstr.htm
Norm <od*****@comcast.net> wrote: The problem isn't preventing access to the database - I already have a security check for that. I'm concerned with someone using a tool to open up my MDB file and then export the data directly from the file. That would bypass the Access application, and whatever password/workgroup security that might have been set.
The real problem though is that there is no way to secure physical access to the data
MDB. Anyone can visit the file share and copy the file down to thier hard drive and
email it or otherwise take it offsite. Then they have as much time to decrypt it as
they want.
The only way to get around this is SQL Server or MSDE or similar database engine
where the data is located on a physically locked room. The interface to the data
then is via the database engine and not through a file share.
Tony
--
Tony Toews, Microsoft Access MVP
Please respond only in the newsgroups so that others can
read the entire thread of messages.
Microsoft Access Links, Hints, Tips & Accounting Systems at http://www.granite.ab.ca/accsmstr.htm
Norm <od*****@comcast.net> wrote in
news:Xn*******************************@216.196.97. 136: 'm concerned with someone using a tool to open up my MDB file and then export the data directly from the file. That would bypass the Access application, and whatever password/workgroup security that might have been set.
If you've set up your Access security properly, they can't bypass
your workgroup security unless they use one of the downloadable
cracks for Jet security. That is, the data in a properly secured Jet
database cannot be accessed by someone with only Access/Jet alone --
it requires a 3rd-party cracking program.
If someone *can* get into your data file without your custom
workgroup, then you've failed to properly set up your Access
security.
--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: luu duong |
last post by:
I know this is probably easy but here is the details. I have an asp
page that is not inside a frameset. I want to post data to another asp
page that is inside a frameset. So firstpage.asp has...
|
by: Billy Jacobs |
last post by:
I have a website which has both secure and non-secure
pages. I want to uses forms authentication. How do I
accomplish this?
Originally I had my web.config file in the root with Forms...
|
by: Brian P. Hammer |
last post by:
All - I have an app that saves data to a xml file via a dataset. Our company stores some data in various xml files that is now considered a risk under its security policy. What's the best way to...
|
by: Lyle Fairfield |
last post by:
In a recent thread there has been discussion about Data Access Pages. It
has been suggested that they are not permitted on many or most secure sites.
Perhaps, that it is so, although I know of no...
|
by: Nick Gilbert |
last post by:
Hi,
As part of a website (ASP.NET) we're creating, we need the ability to
store documents with pretty much 'mission critical' security. ie, if the
server is completely compromised (eg a...
|
by: Roy |
last post by:
Could someone point me in the right direction here?
The current method of importing new data into our db
goes something like this:
1.) txt files received via email
2.) employees clean data and...
|
by: Robert Seacord |
last post by:
The CERT/CC has released a beta version of a secure integer library for
the C Programming Language. The library is available for download from
the CERT/CC Secure Coding Initiative web page at:...
|
by: sofeng |
last post by:
I'm not sure if "data hiding" is the correct term, but I'm trying to
emulate this object-oriented technique. I know C++ probably provides
much more than my example, but I'd just like some feedback...
|
by: Mike |
last post by:
Hi,
If protect MS Access with password it doesn't mean to much. On
internet, we can find plenty tools for opening forgotten passwords
etc.
I have a small c# aplication wit large amount of...
|
by: ryjfgjl |
last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
|
by: emmanuelkatto |
last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud.
Please let me know.
Thanks!
Emmanuel
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
| |