It is possible to block people with Access Security, though this is probably
overkill. Also, I can't recommend that approach, since MS has removed it
from the new file format in A2007.
One simple idea is to use attached tables. This has lots of advantages, one
being that users can't just change the table: they have to figure out where
the back end is, and open that. If splitting is a new idea, see:
http://allenbrowne.com/ser-01.html
Another suggestion is to turn off Special Keys (so the user can't just open
the Database window), and never display a table or query directly (so user
cannot shift it to design view.) Custom menus/toolbars can also make it
harder for users to find design view for anything. Set AllowBypassKey to No
as well. That's enough to keep the average nosy punter out.
One of the crucial things here is whether you really want to take on the
responsibility for this kind of thing. IME, small business people (the usual
Access audience) are scared of messing up their database: they really don't
want the expense and loss of functionality.
For cases where power users could validly be messing with queries, I tend to
create a 2nd front end. This is an MDB, linking to the same tables, but
without any forms/reports. In this database, they can destroy their data
(again, their problem), but they won't harm your application.