Website Security Issue

L

Lanceland

I just started working for a company that has a couple of Access databases
which are linked to webpages through classic asp. The asp pages and the
databases are on a local PC which acts as a "server" with a fixed IP address
and is available from anywhere.

The file structure is as follows (with IP and filenames changed to protect
the innocent):

http://123.456.78.910/apps/lava/default.asp
http://123.456.78.910/apps/lava/edit.asp
Each of these pages accesses a lava.mdb database:

http://123.456.78.910/apps/lava/db/lava.mdb
This database has linked tables to the following database:

http://123.456.78.910/apps/db/Confidential.mdb
This database contains highly confidential information, but is located ABOVE
the \lava directory

There is no security setup on either database using Access (user security is
handled through tables within the lava.mdb database).

How secure is this setup? Unfortunately, I'm not an Access expert, but it
seems vunerable. I'm especially concered that someone could somehow download
the Confidential.mdb database, or get full access to one of the tables. Any
help is appreciated.

Lance
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Linked Table Security in MS Access 0
2007 users cannot open secured 2003 database 2
User Level Security problem in Access 2003 2
Microsoft Access Table Security 2
Access 97 Security Dilemma 3
Help with Splitting and Security Issues 2
Server / Security Issues 2
User Level Security Enquiry 1

Top