Password on DB - how secure ?

[arvindn]

Access offers a simple technique of setting a password on database

Tools -> Security -> Set Database Password

In the Access documentation, it is mentioned that if u forget the database password, the database is unrecoverable.

But i have seen and used softwares that recover the password within a fraction of a second. (even if the password is fairly long and not in dictionary)

Is MS-Access leaving a trapdoor which has been exploited or it simply stores the password carelessly ( as in Windows 98 ) ?

 

[arvindn]

Thank u Pat.

Newer versions mean ???

Coz in Access 2002/XP also, the password is recovered instantly. Is the case somewhat different in Access 2003 ?

Also, i wish to know whether Access stored password in plaintext form or in encrypted form ? In case of proper encryption, it should be very difficult to recover password by brute force method.

 

[adi32]

Has anyone a solution to prevent finding the password with these programs?

 

[The_Doc_Man]

Setting a single database password is always a problem no matter how well that password is stored. A more secure method is to implement true workgroup security where each user has a different password. Search this forum for topics on securing a database. If security is that important that you worry about cracking the single password, you need to do more than you are currently doing anyway.