User Level Security in Access 2007

Re: User Level Security in Access 2007

On Thu, 8 May 2008 12:51:54 -0700 (PDT), evenlater
<evancater@gmai l.comwrote:

I think they removed it because it was never very secure. In future I
will implement role-based security based on membership in Active
Directory groups.

-Tom.

Re: User Level Security in Access 2007

In addition to what Tom has said:

For years, those of us who realized the ease with which a determined cracker
could get past ULS have been advising that if your data was worth US$150 to
you (the cost of password recovery software on the Internet) should use a
server back end for security and that compiling to .MDE would protect your
code. Now, it turns out that the ULS password recovery code can be had for
free, and there is now software, either free or inexpensive, to convert an
..MDE back into a usable .MDB.

With the new ACCDB in Access 2007, access to SharePoint data is enhanced...
it's not truly relational, with referential itegrity, but many companies are
using it, and finding Access a good front-end, just as it has been for
server DBs. And, like server DBs, it has its own data security. There are
additional datatypes, and user interface changes (the latter, you will have
to decide for yourself if it is an advantage or disadvantage). I think
you'll find a longer and more-detailed list of changes at the
http://office.microsoft.com website.

ULS has been convenient for keeping users from stumbling over their own
keystrokes, but that can be coded -- it won't be truly "secure" but will be
about as secure as ULS has turned out to be. In fact, one of my earliest
paying jobs with Access was to implement a "security lite" scheme for just
that purpose, and the client and prime contractor were worried not at all
that it was relatively easy for a knowledgeable Access user to break.

Larry Linson
Microsoft Office Access MVP

"evenlater" <evancater@gmai l.comwrote in message
news:6d31dfdd-03b1-43e0-bd1e-ffa1c6447bb8@c5 8g2000hsc.googl egroups.com...