Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsFormsForms ProgrammingQueriesModules / DAO / VBAReports / PrintingMacrosDatabase DesignSecurityConversionImporting / LinkingSQL Server / ADPMultiuser / NetworkingReplicationSetup / ConfigurationDeveloper ToolkitsActiveX ControlsNew UsersGeneral 1General 2
Access DirectoryToolsTutorialsUser Groups
Related Topics
SQL ServerOther DB ProductsMS OfficeMore Topics ...
MS Access Forum / Security / January 2007

Tip: Looking for answers? Try searching our database.

Database security on a Local Network

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Rahul - 14 Jan 2007 10:02 GMT
This is regarding general protection of a database hosted on a network. I am
developing a database application for my college library using VB.NET, that
will reside on a network.
For some reasons, I did not want to hardcode the Database location in the
application. Instead, when a user logs in, he can choose the database
location using a folder browser control, if the location has changed.

Now, I realize that for this, I have to put the database in a shared folder,
which makes it quite vulnerable. Having pondered over the problem for
sometime, a solution that comes to my mind is to place a Text file in the
same shared folder that always contains the correct path of the database.
When a user chooses that folder, I will read the actual path of the database
from the text file, and move the database to a non-shared folder.
I haven't yet implemented this approach, but felt it better to consult
someone before. So, would this approach work, and is it a good idea.
Reply to this Message
Rick Brandt - 14 Jan 2007 14:24 GMT
> This is regarding general protection of a database hosted on a
> network. I am developing a database application for my college
[quoted text clipped - 13 lines]
> I haven't yet implemented this approach, but felt it better to consult
> someone before. So, would this approach work, and is it a good idea.

I think you worded that incorrectly.  Do you mean you want to store the data
file in a non-shared folder until a user does this and THEN move it to a shared
folder?  If you move it to a non-shared folder then the user will not have
access to it.

If the database moves how will the user know this and where it was moved to?

If you want to provide some protection the opposite approach is normally used.
That is, the file is placed in a folder that is shared, but hidden and only the
admins know what the hidden share is.  That way users have *access* to the file
via your app, but would have a hard time doing anything to the file outside your
app because they won't know where it is.

Signature

Rick Brandt, Microsoft Access MVP
Email (as appropriate) to...
RBrandt   at   Hunter   dot   com

Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.