ADP Security 1

[VladimirAb]

Hi guys!

I use SQL Server 2000 + Access project (front-end).
I need to protect my database window & data tables contents.

So far I am setting the folloing properties to false prior to distributing adp-s to users
=
AllowSpecialKeys, startUpShowDBWindow, AllowBreakIntoCode
AllowBuiltInToolbars, AllowBypassKey
=
The main question is:
1. Is there anything else I can do to be sure that Users are not able to see database window, tables etc. through my adp.
+ 3 more general questions:
2. Is adp easy to hack? Any measures to prevent it?
3. Any tips re SQL Server+adp security will be appreciated.
4. Is it a good decision to use adp as front-end, or it'd better to use something else?

Many thanks in advance,
Vlad

 

[cjowsey]

If you make your ADP into an ADE before distributing it there will be no code visible to break into.

There is a lot you can do on the SQL Server end. Use views and stored procedures and never allow direct access to tables. Put all your users in a group or heirarchy of groups and set access permissions to the group for stored procedures, views and UDFs. Only grant the permissions needed (eg don't allow INSERT and UPDATE on a view if you are only reading data). Only allow sa or dbo to access raw tables.

There's lots more you can. Soem people write entire books on this stuff, but that should get you started.

The ADP, MDB or other front end debate is another one that has strong opinions on all sides.

 

[Aliffi]

Dear !

that is not the case you should check your code again
and refer to some books belong to the area you want to

regards
aliffi