SQL beginner help

I have SQL Express installed and I can access it using C# and SQL connection
manager but I'm confused on how to use this for my application.

What I want to do is host a database on a web server(which uses mysql) that
stores information for users.

I have no idea how SQL works except for a very basic understanding of
databases. What I was going to do was write a C# application that accessed
the database and let the usuer query the database that way. But now I'm
concerned about security and stuff.

A friend of mine told me that essentially I have to write an intermediate
server that sits between the SQL database server and the client so that the
client cannot ever get any direct access to the database. Is this true? If
so then how do I create such a program as it would require the isp to run
the program(which is highly doubful that they will?). It also seems like
twice the work as essentially it would just be a front end on the SQL
database.


Basically the database will just store information(obviously) and the user
will use some interface to access the information(which is about books). I
was thinking about using a web interface instead of an application since it
would be easier but I do need to access the clients computer and I don't
want to use java to do this.

Basically the database is for books sorta like CDDB but different than the
book information databases around now.

What I'm asking is how does one programmatically interface with an SQL
database? Obviously not through scripts and its usually done transparently
but I don't know if they are dynamically creating the scripts and sending it
directly to the server or if there is some other means?

Like when I access a webpage that displays information that obviously comes
from a database, is there a php or javascript that gets the information from
the sql database and displays it or does it go through some intermediate
server for security reasons?

The whole reason is simply that I don't want to have some users having full
access to the database and ruining it by adding wrong information or
deleting it. I want to keep track of which user did what so they can modify
what they have added but not change what someone else has done. I have no
idea if this is handled by SQL directly or if I have to write a front end to
do it? (and the front end is the only thing the clients see)

Thanks,
Jon


.

Relevant Pages

  • RE: Backups have Shadow Copy Problems
    ... and restarted the server. ... suggested and changed the recovery model to simple on the one database called ... I understand the issue to be: the backup task failed ... You back up data from a volume that contains a Microsoft SQL Server ...
    (microsoft.public.windows.server.sbs)
  • Re: Help with first VB application - Data Entry form
    ... I assumed a desktop / winform client application ... time' stamp from the database machine - control machine ... ... problem solved - web server is control system. ...
    (microsoft.public.dotnet.languages.vb)
  • Re: Help with first VB application - Data Entry form
    ... I assumed a desktop / winform client application ... time' stamp from the database machine - control machine ... ... problem solved - web server is control system. ...
    (microsoft.public.dotnet.languages.vb)
  • Re: Remobjects v KBM
    ... >> client query components) follow from that. ... Then, connections can be created to say SQL Server, Oracle, Interbase and ... can then be created from the abstract dataset definition in 'customers' to ... implicitly - this makes your code not be database connection specific). ...
    (borland.public.delphi.thirdpartytools.general)
  • Re: upsizing to sql 2005
    ... the word SERVER in it, ... You can access to the database by multiple means (Access, ... and how does it update the SQL database with the new records in Access? ... Query Name: Arcadia - ARC ...
    (microsoft.public.access.queries)
Loading