How To Create Login Password Protected Database

C

clusardi2k

Hello again,

I have to go home and read up on Access.

But, I have read else-where in this newsgroup that I can just save the
password in the database under scrutiny.

Wouldn't it be wasteful to create a password column for all database
entries?

E.G.:

Entry 1: password field1 ... fieldn
....
Entry M:password field1 ... fieldn

Note: For security reasons (unless I have to), I do not want to
hardcode passwords in VB 8, or save encryted passwords in a text file..

Thanks,
Christopher Lusardi
 
A

AMDRIT

Access supports workgroup security files. This allows you to create users,
groups and assign security to the database objects even at the field level.
Once the workgroup file is setup, you can then provide a simple interface in
your application to prompt the user for the login information. The security
will be much like that of SQL or Oracle once implemented.

Have a look at
http://office.microsoft.com/en-us/assistance/HP030704101033.aspx
 
G

Guest

IMHO, the security on Access is very weak because the security file can be
deleted and the database can be exposed to anyone.
 
C

clusardi2k

AverageUser said:
IMHO, the security on Access is very weak because the security file can be
deleted and the database can be exposed to anyone.
Click to expand...

What can I do about this? If I throw away VB and use Access directly
would that be better, or should I use something such as Oracle?

Thank you,
Christopher Lusardi
 
A

AMDRIT

Every lock has a lockpick. Access' security file is good enough. LAN
deployments are reasonably safe, just like pending deposits your accountants
manage. It would be more secure than a CSV file. If you are that concerned
about the security, create a webservice or remoting service and put the
server in a NOC, or move to a major RDBMS.

I don't think that security should be the main focus with Access. Rather,
file locks on Novell servers, or data contention and disaster recovery
should be the main focus.

More about that security file. If you attempt to open the MDB without the
security file, you will recieve an error. The only way I suppose you could
bypass the security file, is to modify the header of the database itself.
Absense of the security file is the same as absense of your key on the way
back from vacation; there may be another way in, most people wont try it.
 
C

clusardi2k

I think I'll store hashed passwords in a database and keep a backup of
the database.

Chris
 
?

=?ISO-8859-1?Q?G=F6ran_Andersson?=

What is it that you want to protect, really, and from whom?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Password Protected Computers 4
Store Admin passwords in SQL Server to be read in VB.NET 2
Loading CrystalReports.rpt, I Am Asked To Enter Login ID And Password 6
Login to database + getting table's data 4
Where Is The Database To Be Used With Evangelos Petroutsos Download Site 1
Protected workbook link/import 1
Upgrade a password protected database 2
Unable to connect to a password protected Access database 1

Top