Web Wiz - Green Windows Web Hosting
Web Wiz Homepage Search Web Wiz

  New Posts New Posts RSS Feed - Database editors and security
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

Database editors and security
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
mantey View Drop Down
Groupie
Groupie
Avatar

Joined: 03 May 2005
Status: Offline
Points: 57 		Post Options Post Options   Thanks (0) Thanks(0)   Quote mantey Quote  Post ReplyReply Direct Link To This Post Topic: Database editors and security
    Posted: 14 November 2005 at 2:16pm
I want to aks some question. I want to be able to edit Database over the browser, but I have some doubts about security of Database Tools, Database and Table editors.
 
I want to ask, which (free) Database editor is the best and want to know if there is any security risk using some Database editors. Some editors have a very simple login system, where you put the username name and password in the asp page. I am wondering. Is it possible for someone to download a code of the asp page (not the HTML code, but the whole ASP script of certain asp page) via Internet and get the username and password in it. I am a little bit affraid, because if someone can get this, then he/she can mess with my database.
 
Can somebody answer me?
 
 
Back to Top
dpyers View Drop Down
Senior Member
Senior Member


Joined: 12 May 2003
Status: Offline
Points: 3937 		Post Options Post Options   Thanks (0) Thanks(0)   Quote dpyers Quote  Post ReplyReply Direct Link To This Post Posted: 14 November 2005 at 8:14pm
Tools depend upon what type of db you want to edit. - Access, MSSQL, MySQL ?

An asp page can't be downloaded, the server will execute anything ending in .asp rather than deliver it for download.

Just make sure that you have write permissions turned off in directories where you have your asp scripts. If write permissions are turned on, someone can upload their own asp script and use it to read yours.

Lead me not into temptation... I know the short cut, follow me.
Back to Top
mantey View Drop Down
Groupie
Groupie
Avatar

Joined: 03 May 2005
Status: Offline
Points: 57 		Post Options Post Options   Thanks (0) Thanks(0)   Quote mantey Quote  Post ReplyReply Direct Link To This Post Posted: 15 November 2005 at 11:58am
I am using MS Access Database. Do you have any suggestion which Database editor (ASP script) to use. Which editor is good and safe to use?
Back to Top
theSCIENTIST View Drop Down
Senior Member
Senior Member


Joined: 31 July 2003
Location: United Kingdom
Status: Offline
Points: 440 		Post Options Post Options   Thanks (0) Thanks(0)   Quote theSCIENTIST Quote  Post ReplyReply Direct Link To This Post Posted: 15 November 2005 at 6:39pm
Yes, as it was said, .asp pages can't be retrieved just like that, however, as you submit your credentials to the database server for authentication, these can be intercepted in transit, unless you use HTTPS.

I'm also wondering, if Enteprise Manager for MSSQL or Control Panel for MySQL do encript credentials when connecting to remote servers? Anyone?
:: www.mylittlehost.com
Back to Top
dpyers View Drop Down
Senior Member
Senior Member


Joined: 12 May 2003
Status: Offline
Points: 3937 		Post Options Post Options   Thanks (0) Thanks(0)   Quote dpyers Quote  Post ReplyReply Direct Link To This Post Posted: 15 November 2005 at 7:47pm
There's several Access editors available. I've always had MS Access so never really used any of the 3rd party editors. I do know that a lot of people like http://www.2enetworx.com/dev/projects/tableeditor.asp

Lead me not into temptation... I know the short cut, follow me.
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.08
Copyright ©2001-2026 Web Wiz Ltd.

Become a Fan on Facebook Follow us on X Connect with us on LinkedIn Web Wiz Blogs
About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.

Copyright ©2001-2026 Web Wiz Ltd. All rights reserved.