Database Password Sleuth

[Martin Keeton]

I'm a software developer who's been building an
application in VB that uses an Access 2000 database back
end. I had put a password on the database to protect it
but have just found something called the database password
sleuth which is an Application that can instantly crack an
access password. Does anyone out there know of a way I can
secure my database against this while still allowing my
developed applications to access the database.

 

[TC]

The simple answer is, No.

The database password is a simple scheme that is easily cracked.
Unfortunately, user-level security passwords can also be cracked (and there
are products out there to do that), because they are stored using an
incorrect method (from a crypto viewpoint).

Of course, no software running on a normal PC can ever be >completely<
secure. You could always remove the hard disk, mount it in some other system
that ignores all security settings, patch the binaries at the sector level,
then pop it back, & Bob's Your Uncle!

But ms could certainly have done a better job with the database password

and< the user-level security passwords.

P.S. Your database would not be an "Access" database. It would be a
Microsoft Jet database. Jet is the default DBMS for Access. Access is just
the front-end things (forms, reports etc.). My bet is that no part of your
application, would need Access on the client PC - just Jet.

HTH,
TC