Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Access Security Question - Please Help

0 views
Skip to first unread message

Gordon Kelly

unread,
Aug 16, 1999, 3:00:00 AM8/16/99
to
I have a problem which I hope you guys out there can help me with.

I have an application which users have to log into in order to gain
access to the applications functionality. I have set-up a table which
will hold User Id's User Level's
passwords etc.....

I have setup user level security on this table. Only if you have a valid
username/password will you be able to use the application.

My question is this; in order to interrogate the Users table you will
have to supply your UID and PASSWORD. This is then used in the connect
string of the rdo OpenConnection statement. If you have access to this
table - what is to prevent users to opening up Microsoft Access and
logging into the Users table and seeing everyone's UID/password etc????

Is there anyway to prevent this from happening? Your answers to this
question will truely be appreciated.

Best Regards,
Gordon Kelly

Doug Ware

unread,
Aug 16, 1999, 3:00:00 AM8/16/99
to
You are quite correct that this isn't secure. You need to implement Access
user level security. Almost all of the info you will need can be found at
http://support.microsoft.com/support/downloads/dp2719.asp

Once you look at this, your next question will probably be how to avoid
making your users log-in twice. There is no real good way, but if you use
www.deja.com you might be able to find a thread from a couple months ago
where Mary Chipman and I argued over a possible, very kludgey method.

Good luck,
Doug

Gordon Kelly <gordon...@virgin.net> wrote in message
news:37B8CC41...@virgin.net...

Denis Gorshkov

unread,
Aug 16, 1999, 3:00:00 AM8/16/99
to
As a simple solution you can store the encode/decode data in your table that
contains security settings.
It is quite easy to write a simple encryption algorithm - it will suffice
for most users.

Cheers,
Denis Gorshkov
Mobi-Sys Software Group Inc.
Try VMake - our VB multiproject build tool at:
www.mobi-sys.com


Gordon Kelly wrote in message <37B8CC41...@virgin.net>...

Doug Ware

unread,
Aug 16, 1999, 3:00:00 AM8/16/99
to
IMHO, if he doesn't implement user-level security (or at the very least an
MDE), getting the code that does the encoding won't be very difficult.

Doug

Denis Gorshkov <den...@mobi-sys.com> wrote in message
news:CC5u3.93$iq5.4...@news.bctel.net...

Alan Mailer

unread,
Aug 18, 1999, 3:00:00 AM8/18/99
to
Denis, sorry to butt in here, but, would you mind elaborating on how you
would go about implementing your suggestion. I'm a little new to this and
don't exactly know how to fully interpret your suggestion to Gordon. If you
have a minute, I'd sure be interested in hearing your further explanation.
Thanks.
0 new messages