Re: Access security - is it just a joke?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Goos van Beek" <none>
Date: Mon, 6 Mar 2006 11:14:19 +0100

A way to protect your password to password recovery files is to use
'unreadable' characters such as Altxxxxx and so on. Use characters from
different charactersets.
It could look like this: ????????????????????

A password recovery program (like Advanced Office Password Recovery)
displays characters like these as questionmarks.
You also can use code to let your application only start in a runtime
environment. Users have to use the /runtime switch. The recovery program
can't use that switch, and won't have access to the application to use a VBA
backdoor.

The free EverythingAccess Password Retrieval tool doesn't work either in
this case. It thinks that the mdb file is not password protected, but you
can't open it.

OK, it's a lot of extra work...

--
Goos van Beek

<MyReceiver@xxxxxxxxxxx> schreef in bericht
news:1141260396.224313.59580@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Following all recommended best practices to secure the mdb database
(http://support.microsoft.com/default.aspx?scid=KB;en-us;q165009), just
to find out there are tools out there to recover the database password
(http://www.everythingaccess.com/products-services.htm); and worst, a
tool to completely remove the user level security, with or without the
mdw file (http://www.etechrecovery.com/019-MDBrecovery.asp). And it
can be done in seconds, much shorter time than I spent on securing the
mdb database!

I assume the need to set up security is to protect the database. If it
is so easy to defeat, why even bother?

Follow-Ups:
- Re: Access security - is it just a joke?
  - From: Goos van Beek

References:
- Access security - is it just a joke?
  - From: MyReceiver

Prev by Date: Re: access or network problem ?
Next by Date: Re: Access security - is it just a joke?
Previous by thread: Re: Access security - is it just a joke?
Next by thread: Re: Access security - is it just a joke?
Index(es):
- Date
- Thread

Relevant Pages

RE: Defeating password cracking
... Simple ways to defeating password recovery boot-disk and password crackers, ... I was bored and trying different characters that L0phtCrack and other ... Notice the username displays as joev in L0phtCrack ...
(Focus-Microsoft)
Defeating password cracking
... Simple ways to defeating password recovery boot-disk and password crackers, ... I was bored and trying different characters that L0phtCrack and other ...
(Security-Basics)
Defeating password cracking
... Simple ways to defeating password recovery boot-disk and password crackers, ... I was bored and trying different characters that L0phtCrack and other ...
(Focus-Microsoft)
Re: Access security - is it just a joke?
... database to use the VBA-Backdoor. ... 'unreadable' characters such as Altxxxxx and so on. ... A password recovery program ... I assume the need to set up security is to protect the database. ...
(microsoft.public.access.security)
Re: hacker to my account
... jeffrey wrote: ... > Yes, but if you try to do a password recovery, you might still be ... > able to get it back, depending if the hacker changed the email ... > characters, example if you want to use toaster as the password, use ...
(microsoft.public.windowsxp.security_admin)