TC - New security model

  • Thread starter Thread starter Jeff Conrad
  • Start date Start date
Thanks Jeff!

I was hanging out for his security post, but boy - what a surprise. I
can't believe that they have maybe thrown the whole thing out. I'm
hoping that I have misunderstood what he said. Everyone else seems to
be maintaining a stunned silence at this point!

As for the good parts, I was enormously relieved at his comment on DAO
(they won't be breaking it any time soon). So now, the four key
components of my main product (Access, VBA, Jet and DAO) are still
alive.

I guess we'll just have to wait & see on the rest. I hope they've
developed something more relevant (to me, at least!) than Sharepoint
access and safe macros!

Regards,
TC
 
The main question is, would a new security model prevent the sort of hacking
transgressions promoted by such low-lifes as Jeff Conrad MVPuh's site?

And what about Lynn Trapp MVPuh's worry, that legitimate users might be locked
out from their own software? Which is his major reason for promoting hacking
software.

Chris
"I must say, this is not what I expected. I expected that you would address
the actual problems that actual people actually have when they actually try to
create a secured database!" Which is HACKING, TC.
 
Let us remember, that it was TC (along with Lynn Trapp) who said hacking
programs were necessary or desirable because of "legitimate usage".

Let us also remember that it was TC who said no further support of his
proposed improved security was necessary, to get MS-Access Development Team to
implement better security.

This is what TC and his cohorts claimed and said, not me. As far as I can
tell, they mounted stupid arguments because they thought themselves under
investigation, and they were. The reasons should be pitifully obvious.

If the reasoning is contradictory, for and against hacking, ask them not me.

Chris
 
For the cracking of most MS-Access security (Database passwords, User-level
security, MDE's, Encryption) follow the links here on Jeff Conrad's website:
http://home.bendbroadband.com/conradsystems/accessjunkie/mdetomdb.html

This link is endorsed by Jeff Conrad, Tony Toews, and Lynn Trapp, MVP's.

For other password crackers (kindly posted by Tom Wickerath) see here:
www.lostpassword.com

Another resource to crack much of the above (not just mde's) is:
http://www.granite.ab.ca/access/createmdbfrommde.htm

Another cracking resource is:
http://www.access.qbuilt.com/html/faq.html
and also downloadable software (at a cost) at:
http://www.access.qbuilt.com/html/products.html
(The Report "Unlocker" -only $119.95!)(for database password, it says)
(The Change Database Properties Tool -in case you removed database
privilege-only $44.95)
(Database Password Changer-only $34.95!!!)(even though you can get similar for
free)

Inserted in the public interest.
DISCLAIMER: I have not used any of these tools, nor do I know how well they
work. Naturally, you must be the owner of the database you wish to CRACK.

Now, how can the "concerned" "TC" and "Jeff Conrad MVPuh" or "Lynn Trapp
MVPuh" help us here?

There must be something I've forgotten, but hopefully I'll remember it soon...
Chris
 
You stepped over the line, Chris. Disagreement is one thing, but the
personal attacks are completely uncalled for.

PLONK
 
I must now regard Brendan Reynolds MVP, as being in favour of the promotion of
hacking software by MVP's. That will be the 4th MVP, so he's in good company.

Personal integrity, and the spineless lack of, is what it's all about when it
comes to security.

Chris
 
How would you know anything about personal integrity, given what tripe
you've been posting here Chris?
 
Douglas J Steele MVP describes posting URL's to MVP cracking websites as
tripe...

(But Lynn Trapp MVP says it's a service...)
 
There are some MVP's who are prepared to make complete fools of themselves, in
order to avoid the Terrible Wrath of criticising a fellow MVP.

And Doug Steele appears to be one of them.
 
You can find most Access cracking here via these MVP websites:
"The Access Junkie"
http://home.bendbroadband.com/conradsystems/accessjunkie/mdetomdb.html
"Tony Toews"
http://www.granite.ab.ca/access/createmdbfrommde.htm

Cor blimey, Amazing...inserted just in case any poor soul loses their password
or source code like Lynn Trapp MVP is so worried about...never mind it's the
REASON why MSAccess is so insecure...

If the purported MVP's contributing to this purported Security Newsgroup wish
to make such a mockery of the subject, well, I'm game. Maybe Microsoft was
right, back in 1999 or so when they proposed discarding the MVP program.
Merely statistically, it's likely there are some undeserving ones, and so it
seems to prove to be.

Chris
 
Since it seems a bit pointless to continue to add MVP's to the list of errant
ones, I propose to propose to Microsoft discarding the entire MVP program (as
MS originally proposed).

I am also considering whether to support Microsoft's proposal of discarding
the ENTIRE ULS, as they have already stated for Access12, for the simple
reason that WHEN it is cracked we will have MVP's posting the cracks and Lynn
Trapp MVP saying the cracks are needed for the "poor souls who lose their
key".

Therefore, it makes sense to discard all pretence at security. This is the
opinion, intended or not, of all the valuable MVP's to this newsgroup. So
far...

Chris
 
I have no issue with Doug Steele flaming, which is water off a "Canada Duck"'s
back.

It's just such a pity he has NO opinion on Microsoft Access Security. And
purports at the same time to advise this newsgroup occasionally.

Chris
 
Chris,

I'm mildly curious about your last statement here. How exactly did you
misquote me (not that it would be any real surprise that you did)?

You've been handing out a lot of links in this thread to password cracking
software. I'm kind of surprised that you have not listed a *free* site that
offers downloadable tools to crack both ULS and database passwords. Hint:
"Serge Gavrilov".

Tom

___________________________________________

:

I admit making a mistake quoting Tom Wickerath.
___________________________________________


How would you know anything about personal integrity, given what tripe
you've been posting here Chris?
 
Back
Top