Prevent Linking to Back End

khwaja

Registered User.
Local time
Today, 23:50
Joined
Jun 13, 2003
Messages
254
I have a split database. I have secured the mde sufficiently but I need to secure the back end so that no one could link to tables in it. If I introduce a password to the back end is this going to require those using front end to supply the password? If not then this could be good solution.

As the database is on the network drive, is there any other way to prevent people to link to the db? Can I hide the db in the network drive? Or should I hide tables in the BE. Should these still be available to be linked?
 
At some point you are going to need to trust your users. If someone wanted to wreck something they could do so very easily without linking to your tables.
 
The backend can have a password which can be saved in the FE. However it can be quite easy to find the password in the FE.

Access Back ends should not be used if you care about security. The attacker could simply copy the file and crack it with brute force off site at their leisure.

If you want security then convert the BE to use a database server.
 
Thanks. Thankfully I never had any issues at the hand of users. It is just some recalcitrant individuals who have some know how and try to link via Excel. If I apply a password to the back end, I am guessing that would be needed before someone links it. If so, does the FE user have to use the password to get in. If not, then I will be happy with this solution.
 
Talk with your users. Do they have a need for something you haven't provided? Give them an easier way to do what they want to do, so they don't try to sneak in the back door.

Your best security is trust and happy users.
 
agree with all this.

Furthermore, most commercial apps allow access to the data tables via an ODBC connector. It's a benefit to have such access, not a hindrance.

The idea of a "secret" password to an access back end is great though - except that after the table is connected, the table connection string in the front end exposes the password in plain text, which I do think is absolutely ridiculous
 
Encrypt with password the BE: keep this password confidential. You will have to use it to recreate the links of the FE.

Compact then encrypt the FE: the password will be given to your users.

Once encrypted, well good luck to those who want to sneak in.
 

Users who are viewing this thread

Back
Top Bottom