Safety problem about Access Database

Post Reply

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
westman2 Members Profile Find Members Posts Newbie Joined: 12 November 2004 Status: Offline Points: 1	Post Options Post Reply Quote westman2 Report Post Thanks(0) Quote Reply Topic: Safety problem about Access Database Posted: 12 November 2004 at 11:37am
	Hi, friends there, I have a question about the database safety. I am using Access. If anybody know the path for the database, he can easily download my database. Thus, I am thinking whether anybody can do something to avoid this. I know there is a Chinese forums called DVBBS. In the .mdb file, there is a table called DV_notdownload. To be safe, user needs to rename the .mdb file to .asp. And because of this table in the Access database, it can not be either downloaded or displyed. Any friend can do something similar to this. Because not every server provides a folder above the root directory. Can anybody help? And FYI, here is a smaple. www.microe.info/Dvbbs7.mdb

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 12 November 2004 at 11:43am
	Good web hosts always give you a directory to store your access databases to prevent them from being downloaded, or you could change the name from .mdb to .asp as you suggest. Web Wiz Forums comes with detailed instructions on how to move and rename the Access database in the install instructions, which is recommended that all Access users should do. It can also be read online at:- http://www.webwiz.net/web_wiz_forums/docs_access_move_ db.asp
	Web Wiz Forums Hosting ASP.NET Web Hosting

xeerex Members Profile Find Members Posts Senior Member Joined: 19 November 2002 Location: United States Status: Offline Points: 601	Post Options Post Reply Quote xeerex Report Post Thanks(0) Quote Reply Posted: 12 November 2004 at 12:21pm
	Like -borg- said, a good host will always give you a directory ABOVE ROOT or at least one where download permissions are removed. If you have any other setup you are just asking for trouble. Note: You certainly can rename the database to .asp, which will help "obfusticate" its location. However, if someone should guess the .asp file and location then all the data will be processed as text and displayed. Granted, it will be hard to decipher but still.....
	Need Hosting, Domains, Dedicated Servers? web design \| pc support \| training \| podcasts \| video production

dpyers Members Profile Find Members Posts Senior Member Joined: 12 May 2003 Status: Offline Points: 3937	Post Options Post Reply Quote dpyers Report Post Thanks(0) Quote Reply Posted: 12 November 2004 at 3:48pm
	I used to rename the .mdb to .asp but found that on most (but not all) hosts, it displayed the raw data on some browsers. Better to use .dll, .exe, or don't use an extension at all. Best is to move it out of the web space as previously noted.
	Lead me not into temptation... I know the short cut, follow me.

Post Reply

Forum Jump

Forum Permissions View Drop Down

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum