| Author |
Overall Security???
|
|
| Dimitrios Tanis 2005-08-08, 7:25 am |
| I am currently developing a distributed database application (database side
is complete in sql 2000 DE) and I am in the verge of developing the FE. What
I want to know is if there is a way (which developing environment) to use to
adequately protect both the BE (sql) and FE (?) from being seen by others,
aka secure theft of both db BE and FE structure and containing data.
As I know sql is profoundly one of the secure ways but how do I 'encrypt' my
db structure from being seen by others? (uncluding the customers that buy
the program)????
Currently for the FE I have the following enviroments in mind:
1. VB .NET
2. Access
3. FoxPro
What should I choose.
Any help of reference is mostly appreciated.
Thanx in advance.
| |
| Arvin Meyer [MVP] 2005-08-08, 7:25 am |
| The first and third have executables which cannot be read. The second
(Access) has a tokenized file called an MDE which also cannot be read. Even
with a hex editor, very little if any of the 3 formats can be read.
As far as data security, unauthorized people can be excluded using the file
system. The data (BE) structure is usually visible to anyone with the
administrative rights to install. Access databases can be protected by
creating a BE with no permissions to anyone except an owner. MSDE databases
are protected with SQL-Server security.
Security is a multi-faceted property and requires not only good data
practices, but also limiting access to that data with physical locks and
firewalls.
--
Arvin Meyer, MCP, MVP
Microsoft Access
Free Access downloads:
http://www.datastrat.com
http://www.mvps.org/access
"Dimitrios Tanis" <jtanis@mycosmos.gr> wrote in message
news:eJWySQAnFHA.2580@TK2MSFTNGP09.phx.gbl...
> I am currently developing a distributed database application (database
side
> is complete in sql 2000 DE) and I am in the verge of developing the FE.
What
> I want to know is if there is a way (which developing environment) to use
to
> adequately protect both the BE (sql) and FE (?) from being seen by others,
> aka secure theft of both db BE and FE structure and containing data.
> As I know sql is profoundly one of the secure ways but how do I 'encrypt'
my
> db structure from being seen by others? (uncluding the customers that buy
> the program)????
> Currently for the FE I have the following enviroments in mind:
> 1. VB .NET
> 2. Access
> 3. FoxPro
> What should I choose.
>
> Any help of reference is mostly appreciated.
>
> Thanx in advance.
>
>
| |
| Chris Mills 2005-08-08, 7:25 am |
| Have you perused the last month's posts in this newsgroup (security)?
Your question is sufficiently general-purpose that I suggest you do, then come
back with specifics.
Chris
"Dimitrios Tanis" <jtanis@mycosmos.gr> wrote in message
> I want to know is if there is a way (which developing environment) to use to
> adequately protect both the BE (sql) and FE (?) from being seen by others,
| |
| sandra@hotmail.com 2005-09-07, 1:25 pm |
| Help´me my name´s Sandra,
"Dimitrios Tanis" <jtanis@mycosmos.gr> escribió en el mensaje
news:eJWySQAnFHA.2580@TK2MSFTNGP09.phx.gbl...
> I am currently developing a distributed database application (database
side
> is complete in sql 2000 DE) and I am in the verge of developing the FE.
What
> I want to know is if there is a way (which developing environment) to use
to
> adequately protect both the BE (sql) and FE (?) from being seen by others,
> aka secure theft of both db BE and FE structure and containing data.
> As I know sql is profoundly one of the secure ways but how do I 'encrypt'
my
> db structure from being seen by others? (uncluding the customers that buy
> the program)????
> Currently for the FE I have the following enviroments in mind:
> 1. VB .NET
> 2. Access
> 3. FoxPro
> What should I choose.
>
> Any help of reference is mostly appreciated.
>
> Thanx in advance.
>
>
| |
| Anders 2005-09-13, 1:25 pm |
| Security will reside in the SQL Server database and in the user priviledges
the system administrator sets up. It will not depend on VB.Net, Access or
Visual FoxPro. Choose whatever development tool for the user interface you
prefer. It's a different decision.
-Anders
"sandra@hotmail.com" <spl_23@hotmail.com> skrev i meddelandet
news:eyoHLF9sFHA.2756@TK2MSFTNGP09.phx.gbl...
> Help´me my name´s Sandra,
> "Dimitrios Tanis" <jtanis@mycosmos.gr> escribió en el mensaje
> news:eJWySQAnFHA.2580@TK2MSFTNGP09.phx.gbl...
> side
> What
> to
> my
>
>
| |
| ÄߺìÒ« 2005-10-27, 8:34 am |
| Ϊʲô°¡
"Anders" <anders@anders> дÈëÏûÏ¢ÐÂÎÅ
:ubEqTLIuFHA.3400@TK2MSFTNGP14.phx.gbl...
> Security will reside in the SQL Server database and in the user
priviledges
> the system administrator sets up. It will not depend on VB.Net, Access or
> Visual FoxPro. Choose whatever development tool for the user interface you
> prefer. It's a different decision.
> -Anders
>
> "sandra@hotmail.com" <spl_23@hotmail.com> skrev i meddelandet
> news:eyoHLF9sFHA.2756@TK2MSFTNGP09.phx.gbl...
use[color=darkred]
'encrypt'[color=dark
red]
buy[color=darkred]
>
>
| |
| aaron.kempf@gmail.com 2005-10-27, 8:34 am |
| yeah.. i think that it's ridiculous in this day and age to have any
confidence in MDB security.
use an ACCESS DATA PROJECT man it rocks
| |
|
|
aaron.kempf@gmail.com wrote:
> yeah.. i think that it's ridiculous in this day and age to have any
> confidence in MDB security.
The next version (Access 12) uses Office Encryption. This will change
the story completely.
TC
| |
| Dan Freeman 2005-10-27, 8:34 am |
| TC wrote:
> aaron.kempf@gmail.com wrote:
>
>
> The next version (Access 12) uses Office Encryption. This will change
> the story completely.
Whether for better or worse remains to be seen. <g>
| |
|
|
|
| Given that you don't have the slightest idea of my customer base, or
their needs, I will file your suggestion for further consideration some
time in the next millenium.
TC
| |
| aaron.kempf@gmail.com 2005-10-27, 8:34 am |
| i just know that spyware and malware is a lot bigger threat than you
guys could possibly comprehend.
i did proxy log analysis at microsoft- i know that the largest
companies in the world can't deal with this problem
and you guys are just giving them a blank check when you use mdb
| |
| Robert Morley 2005-10-27, 8:34 am |
| >i just know that spyware and malware is a lot bigger threat than you
> guys could possibly comprehend.
>
Just a little egotistical, aren't we?!?
Rob
| |
|
| I can imagine how long someone with your powers of exposition would
last at Microsoft!
TC
| |
| aaron.kempf@gmail.com 2005-10-27, 8:34 am |
| I got fired TWICE. for complaing.
I worked in a dept called 'MSN Quality of Service' and those drunk
monkeys couldn't keep hotmail up reliably for 10 minutes
and SQL authentication?
I call for the immediate arrest of Bill Gates and other Sr Management
for TREASON. putting our troops at risk shit; they should all be
rounded up and shot on live TV.
I mean-- SQL authentication is used all over the world; and in SQL 2000
and SQL 2005; it can't stand up to a simple dictionary attack.
RIGHT???
-Aaron
| |
| heying 2005-12-03, 3:24 am |
|
"ÄߺìÒ«" <hyni@nttec.edu.cn> дÈëÏûÏ¢ÐÂÎÅ:uZuZ31%
23yFHA.908@tk2msftngp13.phx.gbl...
> Ϊʲô°¡
> "Anders" <anders@anders> дÈëÏûÏ¢ÐÂÎÅ
> :ubEqTLIuFHA.3400@TK2MSFTNGP14.phx.gbl...
> priviledges
> use
> 'encrypt'
> buy
>
>
|
|
|
|