Firstly why would you use access DB? how about MS-SQL ? or mysql ? Technically I know nothing about access DB anyway. I'd suggest using alternate DB server though.
I guess u can restrict access to the folder with the mdb file to a local call by the .asp and not directly from the internet. But then as Najim suggested use mysql or something.
I guess u can restrict access to the folder with the mdb file to a local call by the .asp and not directly from the internet. But then as Najim suggested use mysql or something.
Can't understand, Have some idea but not completly. Can you explain a little more....or give me some reference...
your mdb doesn't have to be in the webserver path. you can use a ODBC connection with ASP to connect to it and your mdb will always be hidden..
no, I dont use any ODBC on the webserver, it is a direct connection to db....but can I do so....how ?
MY4, can you tell us a bit about how your server is setup? Do you have full control or is it one of those paid, shared hosting where you get some webspace and a control panel?
Well, it is probably on a local system or an own webserver, while I am talking about a paid webhosting service.
However I manage to got the solution through another searches…Encryption is involved in it. There are hash function developed to protect such issues. like user ids & password in database.
It will generate a secure string for a given string…like if you put
testpassword —> hash function —> cdef7gh4hahkmayelkho
also
cdef7gh4hahkmayelkho — hash function → testpassword
Well issue here is that if someone can see ur .mdb file he can download the whole DB, cant he? Once he has the whole DB - he can do whatever he wants to do with the DB, crack/hack decrypt etc etc. Thats why I suggested using other type of DB SERVER. If u can ask ur provider to change ur plan to MSSQL SERVER(or mysql), or use Linux hosting with mysql, u may not be able to use asp unless FP/MS extentions are installed on top of apache, but then u can use php instead.
If you want to test - get a free shell account with mysql & manually test ur stuff for mysql
Free (unix/linux) shell account with apache & mysql (free webhosting) is available from
I know databases like SQL server, Oracle, mysql are secure, because you can not copy them as copying file...
The purpose of encryption with access is that. even some one know the encrypted password, he cannot decrypt it...It might be possible with some very advance user but not with a user like me or you.
But going back to the issue at hand for linux based hosts they usually provide you with other folders besides “public_html” (which is where you place files accessible through the website, as Ansoo pointed out), where you can place the mdb file, so access to it thru the internet will not be possible but ur .asp page would be able to access it locally on the machine.
the security provide from the server is enough, but if some1 manage to get the database, inside our organization. he might see the passwords of other users.
Consider Yahoo User Accounts, do you think any 1 from yahoo staff could know the passwords of public user accounts, even they have access to the database (from webmasters)
I know the big db's like Oracle, SQL Server have enough security, I m just trying to do that wid ms Access...
Bhaee-jaan thats what I am trying to say, access does not have that function :)
Few years back with mysql 4.x or older version, people had to use postgreSQL because mysql was lacking many advanced functions. Same principle applies here, access lacks those functions.
Now you should set ur preferences, what exactly do u want? To use Access, security, ease, budget, expertese etc & then decide. Dont try to do an Oracle function with access, it wont work.
Yes I know that. infect I just have started working in ASP classic. So the eaziest database & also its hosting we can find free, most of the places... It is Ms Access
after developing some projects in it I'll go for ASP.Net & SQL server or PHP & MYSQL but still I am confused about future of these. Not sure who gonna rock in future of web.
^^ OMG! Who is going to rock? hahaha
Its not like the competition between Blu-ray and HD-DVD now, is it?
Both of them have been existence for a while and have been living side by side happily. Just pick one and go with it. ASP is usually bigger corporations on the M$ platform, whereas php/mysql users tend to be poorer/open-source kinda ppl (I did say usually, so don't flame me for it). Most web-hosting accounts based on php are cheaper.
Where are u getting free asp based provider? Is it the one whose name starts with W? I can't think of the name right now.
Wait, it didn't start with a W, it is www.brinkster.com. Way back when they used to offer a free account I signed up, and the account is still valid. I don't see any link to create another one. Let me see if i can do referrals.
Brinkster still offers free accounts. The link is very obscure and embedded within a maze of pages. I get students to use it in my undergrad MIS courses for hosting databases and asp pages.
How do you know how advanced he is?