Easy security question, quick answer needed

[Richard Clarke]

Hi

Let's say I have a Windows XP machine with a system DSN on which
points to an Access 97 .mdb file (Access itself is not installed on
the machine).

This mdb file has no security on it at all. A user on the machine can
just use any old sql client (MSQuery, Excel, WinSQL etc) to get to the
DSN and start fudging data willy nilly.

The machine also has lots of VB applications that use the database for
their data reading / writing, and also some C++ dlls that do the same
thing.

Is there any way I can secure the mdb file so the applications can
read / write to it, but the user cannot use an sql client to fudge the
data.

Many thanks

 

[Eric Butts [MSFT]]

Hi Rich,

Apply Microsoft Access User Level security and provide the applications you
want to work with the database the correct User Name, Password and
WorkGroup Information File (*.MDW) to use.

Regards,

Eric Butts
Microsoft Access Support
(e-mail address removed)
"Microsoft Security Announcement: Have you installed the patch for
Microsoft Security Bulletin MS03-026? If not Microsoft strongly advises
you to review the information at the following link regarding Microsoft
Security Bulletin MS03-026
<http://www.microsoft.com/security/security_bulletins/ms03-026.asp> and/or
to visit Windows Update at <http://windowsupdate.microsoft.com/> to install
the patch. Running the SCAN program from the Windows Update site will help
to insure you are current with all security patches, not just MS03-026."

This posting is provided "AS IS" with no warranties, and confers no rights



--------------------
| From: (e-mail address removed) (Richard Clarke)
| Newsgroups: microsoft.public.access.security
| Subject: Easy security question, quick answer needed
| Date: 9 Jun 2004 09:14:54 -0700
| Organization: http://groups.google.com
| Lines: 23
| Message-ID: <[email protected]>
| NNTP-Posting-Host: 193.115.220.230
| Content-Type: text/plain; charset=ISO-8859-1
| Content-Transfer-Encoding: 8bit
| X-Trace: posting.google.com 1086797694 11859 127.0.0.1 (9 Jun 2004
16:14:54 GMT)
| X-Complaints-To: (e-mail address removed)
| NNTP-Posting-Date: Wed, 9 Jun 2004 16:14:54 +0000 (UTC)
| Path:
cpmsftngxa10.phx.gbl!TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed00.s
ul.t-online.de!t-online.de!fr.ip.ndsoftware.net!proxad.net!postnews1.google.
com!not-for-mail
| Xref: cpmsftngxa10.phx.gbl microsoft.public.access.security:11291
| X-Tomcat-NG: microsoft.public.access.security
|
| Hi
|
| Let's say I have a Windows XP machine with a system DSN on which
| points to an Access 97 .mdb file (Access itself is not installed on
| the machine).
|
| This mdb file has no security on it at all. A user on the machine can
| just use any old sql client (MSQuery, Excel, WinSQL etc) to get to the
| DSN and start fudging data willy nilly.
|
| The machine also has lots of VB applications that use the database for
| their data reading / writing, and also some C++ dlls that do the same
| thing.
|
| Is there any way I can secure the mdb file so the applications can
| read / write to it, but the user cannot use an sql client to fudge the
| data.
|
| Many thanks
|
| --
|
| Rich (change nospam to mlu035 to reply direct)
|

 

[Richard Clarke]

Apply Microsoft Access User Level security and provide the applications you

want to work with the database the correct User Name, Password and
WorkGroup Information File (*.MDW) to use.

Eric

Many thanks for your reply.

I am still not sure if this is an appropriate solution - will I have
to re-write the VB / C++ appliations to then supply the username and
password when opening connections, or is this somehow set in windows
permissions ?

Many thanks

 

[Eric Butts [MSFT]]

Hi Rich,

You will need to re-write your app to pass the User Name and Password.

Windows NT Permissions and Microsoft Access User Level Security permissions
are unrelated.

Regards,

Eric Butts
Microsoft Access Support
(e-mail address removed)
"Microsoft Security Announcement: Have you installed the patch for
Microsoft Security Bulletin MS03-026? If not Microsoft strongly advises
you to review the information at the following link regarding Microsoft
Security Bulletin MS03-026
<http://www.microsoft.com/security/security_bulletins/ms03-026.asp> and/or
to visit Windows Update at <http://windowsupdate.microsoft.com/> to install
the patch. Running the SCAN program from the Windows Update site will help
to insure you are current with all security patches, not just MS03-026."

This posting is provided "AS IS" with no warranties, and confers no rights

--------------------
| From: (e-mail address removed) (Richard Clarke)
| Newsgroups: microsoft.public.access.security
| Subject: Re: Easy security question, quick answer needed
| Date: 10 Jun 2004 07:42:05 -0700
| Organization: http://groups.google.com
| Lines: 18
| Message-ID: <[email protected]>
| References: <[email protected]>
<[email protected]>
| NNTP-Posting-Host: 193.115.220.230
| Content-Type: text/plain; charset=ISO-8859-1
| Content-Transfer-Encoding: 8bit
| X-Trace: posting.google.com 1086878525 14282 127.0.0.1 (10 Jun 2004
14:42:05 GMT)
| X-Complaints-To: (e-mail address removed)
| NNTP-Posting-Date: Thu, 10 Jun 2004 14:42:05 +0000 (UTC)
| Path:
cpmsftngxa10.phx.gbl!TK2MSFTNGXA06.phx.gbl!cpmsftngxa06.phx.gbl!TK2MSFTNGP08
.phx.gbl!newsfeed00.sul.t-online.de!t-online.de!fr.ip.ndsoftware.net!proxad.
net!postnews1.google.com!not-for-mail
| Xref: cpmsftngxa10.phx.gbl microsoft.public.access.security:11352
| X-Tomcat-NG: microsoft.public.access.security
|
| > Apply Microsoft Access User Level security and provide the applications
you
| > want to work with the database the correct User Name, Password and
| > WorkGroup Information File (*.MDW) to use.
|
| Eric
|
| Many thanks for your reply.
|
| I am still not sure if this is an appropriate solution - will I have
| to re-write the VB / C++ appliations to then supply the username and
| password when opening connections, or is this somehow set in windows
| permissions ?
|
| Many thanks
|
| --
|
| Rich
|