Access security question

6 Dec 2006 8:33 AM

Matko

Hello,

I plan to use Access as a database for storing data for my application.
Programming language is C#.
1. How much Access database is secure. We all read about some
vulnerabilities in more powerfull databases lile Oracle, MS SQL, etc, but
how is going with Access.
2. Can Access database be converted to MDE extension and then store data to
it.
3. How much is secure (breakable) password in Access 2003, for example
password like Hj57Agf5DnWc2Nm , and does it matter how much is password long
in Access?

Thanks for the answers,
John

6 Dec 2006 10:16 AM

Keith Wilby

Show quote Hide quote

"Matko" <ovominijeem***@hotmail.com> wrote in message
news:el5v9a$m2m$1@ss408.t-com.hr...
> Hello,
>
> I plan to use Access as a database for storing data for my application.
> Programming language is C#.
> 1. How much Access database is secure. We all read about some
> vulnerabilities in more powerfull databases lile Oracle, MS SQL, etc, but
> how is going with Access.
> 2. Can Access database be converted to MDE extension and then store data
> to it.
> 3. How much is secure (breakable) password in Access 2003, for example
> password like Hj57Agf5DnWc2Nm , and does it matter how much is password
> long in Access?
>
> Thanks for the answers,
> John
>

Hi John.

Access is not secure from an experienced hacker with the right tools. If
you data is sensitive and will be deployed in a hostile environment then
don't use Access.

Regards,
Keith.

6 Dec 2006 10:23 AM

Matko

> Access is not secure from an experienced hacker with the right tools. If
> you data is sensitive and will be deployed in a hostile environment then
> don't use Access.

Hello Keith,

Wha do you mean about hostile environment? Is it web?
I plan to deploy application on a client computer.
What database do you prefer? Consider easy of deployment of Access and small
database size.

Regards,
John

6 Dec 2006 11:15 AM

Keith Wilby

Show quote Hide quote

"Matko" <ovominijeem***@hotmail.com> wrote in message
news:el65n5$7m3$1@ss408.t-com.hr...
>> Access is not secure from an experienced hacker with the right tools. If
>> you data is sensitive and will be deployed in a hostile environment then
>> don't use Access.
>
> Hello Keith,
>
> Wha do you mean about hostile environment? Is it web?
> I plan to deploy application on a client computer.
> What database do you prefer? Consider easy of deployment of Access and
> small database size.
>
> Regards,
> John
>

By hostile I mean anywhere where you fear a hacker might lurk. You have to
assess the risk of that being the case in your client's place of work. In
my line of work the risk is very low so Access is fine and I use it every
day. It is easy to use and deploy once you get the hang of it.

Regards,
Keith.
www.keithwilby.com

6 Dec 2006 2:39 PM

Joan Wild

Matko wrote:

> 1. How much Access database is secure. We all read about some
> vulnerabilities in more powerfull databases lile Oracle, MS SQL, etc,
> but how is going with Access.

Access is not secure. There are tools on the web available to crack the
security. If you think Oracle and SQL Server are vulnerable, then Access is
definitely out.

> 2. Can Access database be converted to MDE extension and then store
> data to it.

An MDE will protect any changes in design of forms/reports/modules. The
tables/queries/macros are not protected in any way.

> 3. How much is secure (breakable) password in Access 2003, for example
> password like Hj57Agf5DnWc2Nm , and does it matter how much is
> password long in Access?

Seems to me there's a limit to the password (14 char?), however the database
password is easier to crack than user-level security.

--
Joan Wild
Microsoft Access MVP