G
Guest
I have a database that will be stored on a network where folks from around
the country will do essentially data entry. They need to be able to add new
records, update existing ones, and run reports. They must not be allowed to
edit data directly in the tables, or they will screw up each other's records.
I have implemented the security measures described below, and I am looking
for any input regarding security loopholes I may need to go back and cover. I
am using Access 2003, btw.
User-level security is defined, and the workgroup information file is kept
on my hard drive, many many miles from each of the users I am guarding
against. The users group (including the default Admin user) has read and
update permissions on the tables, in order for the forms to work. But I don't
want them going into the tables directly. I've seen the recommended procedure
here is to block permissions on the tables and then run the form on an RWOP
query, but I don't really understand the point since they can then just go
directly into the query (instead of the table) and edit the data there still
without using the forms. Anyway, I've implemented a switchboard startup form
for them to use, disabled the database window so they can't find the tables,
disabled the F11 key and the shift-bypass key, created a custom file menu,
and disallowed toolbar/menu changes so they can't cheat and bring up the
database window anyway, and password-protected the vb so they can't do
anything sneaky in that way. Still, though, I feel like there's probably a
really easy way one could bypass all of this in five seconds. I just want
other people with more experience than I to take a look at what I've done so
far and let me know of anything stupid I missed.
Thanks in advance for any help.
--K
the country will do essentially data entry. They need to be able to add new
records, update existing ones, and run reports. They must not be allowed to
edit data directly in the tables, or they will screw up each other's records.
I have implemented the security measures described below, and I am looking
for any input regarding security loopholes I may need to go back and cover. I
am using Access 2003, btw.
User-level security is defined, and the workgroup information file is kept
on my hard drive, many many miles from each of the users I am guarding
against. The users group (including the default Admin user) has read and
update permissions on the tables, in order for the forms to work. But I don't
want them going into the tables directly. I've seen the recommended procedure
here is to block permissions on the tables and then run the form on an RWOP
query, but I don't really understand the point since they can then just go
directly into the query (instead of the table) and edit the data there still
without using the forms. Anyway, I've implemented a switchboard startup form
for them to use, disabled the database window so they can't find the tables,
disabled the F11 key and the shift-bypass key, created a custom file menu,
and disallowed toolbar/menu changes so they can't cheat and bring up the
database window anyway, and password-protected the vb so they can't do
anything sneaky in that way. Still, though, I feel like there's probably a
really easy way one could bypass all of this in five seconds. I just want
other people with more experience than I to take a look at what I've done so
far and let me know of anything stupid I missed.
Thanks in advance for any help.
--K