Ad:

C++ Discussion Thread
Unsolved
Views: 851

Jun 14th, 2007

database and form security

Expand Post »

i have a form which i have to protect with a password. this form is called from a user form which does not have any passwords on it. which means anyone can access it. in order to accomplish the security i placed a password in an access database but the database itself cannot be password protected since the no-password calling form has to access this database. based on that there is a potential security issue since a person can just open the database and alter the password and then access the form which is supposed to be secure. but i cannot think up a better solution. does anyone have a suggestion?

i thought about encrypting the password before writing it to the database in such a form that if someone wants to change the password in the dbs he would have to first know and apply the encryption but i have little idea of how to do an encryption.

Similar Threads

Login and retrieve user data from database in ASP.NET
Updating an Access database with a secondary form in VB.NET
How can I refresh DataBase without closing Form in Visual Basic 4 / 5 / 6
How can I refresh DataBase without closing Form Attached with my Coding in Visual Basic 4 / 5 / 6
Posting form data to an Oracle database in JavaScript / DHTML / AJAX

quintoncoert

Reputation Points: 160

Solved Threads: 3

Posting Whiz in Training

Offline

266 posts
since May 2007

Permalink

Jun 15th, 2007

Re: database and form security

>but i have little idea of how to do an encryption.
So this is your opportunity to learn. Storing a plain-text password anywhere is a really bad idea, so if you want to make claims about security, you need to encrypt it.

Narue

Administrator

Reputation Points: 6442

Solved Threads: 1393

Bad Cop

Offline

11,807 posts
since Sep 2004

Permalink

Jun 15th, 2007

Re: database and form security

So this is your opportunity to learn.

i shall learn later. but i did do some sort of encryption. as a child i read puzzle as well as a few spy books so at least i knew secret codes. i applied a few and for now i believe that it was sufficient.

quintoncoert

Reputation Points: 160

Solved Threads: 3

Posting Whiz in Training

Offline

266 posts
since May 2007

Permalink

Jun 15th, 2007

Re: database and form security

>as a child i read puzzle as well as a few spy books so at least i knew secret codes.
Hmm.

>i applied a few and for now i believe that it was sufficient.
Yea, I hope you don't mind that I won't hire you to add security to my software.

Narue

Administrator

Reputation Points: 6442

Solved Threads: 1393

Bad Cop

Offline

11,807 posts
since Sep 2004

Permalink

Jun 18th, 2007

Re: database and form security

>i applied a few and for now i believe that it was sufficient.
Yea, I hope you don't mind that I won't hire you to add security to my software.

Sa! How easily a sentence shear a septum!

Just kidding! I know... The security is lousy. But all it does is protect a simple configuration file which remembers how some hardware devices connect to one another. If it had been up to me there would have been no password at all but my boss insists. Besides this is a demo only.(which demonstrates the behaviour of the hardware not the security!)

quintoncoert

Reputation Points: 160

Solved Threads: 3

Posting Whiz in Training

Offline

266 posts
since May 2007

This thread is more than three months old

No one has posted to this discussion for at least three months. Please let old threads die and do not reply to them unless you feel you have something new and valuable to contribute that absolutely must be added to make the discussion complete. Otherwise, please start a new thread in this forum instead.

Previous Thread in C++ Forum Timeline: Splitting words from string into character array

Next Thread in C++ Forum Timeline: CHtmlEditor, plz help me

DaniWeb Message

Cancel Changes

User Name
Password