|
-
May 1st, 2001, 08:10 AM
#1
Thread Starter
Lively Member
Permission Question for Web Database
I have an Access 2000 Database that is filled with knowledgebase articles. I need to publish it on the internet with asp pages. Here is how I have it set up.
wwwroot
.......wwwroot\Knowledgebase.asp
.......wwwroot\Articles.asp
.......wwwroot\Database
...............wwwroot\Database\Knowledgebase.mdb
For the code to work I have to give the I_User Read, Write, and Execute permissions to the wwwroot\database directory. What are the dangers of this, and are there any better ways of doing it? If I give the I_User only read and execute permissions he cannot access the Database when it is open by someone else.
Thanks
Brandon
-
May 2nd, 2001, 12:44 PM
#2
Black Cat
The danger is that if someone knows the DB file name, they can download the raw database. How sensitive is the info in the db?
The ideal solution would be to put the DB in a folder that is not part of the web site structure.
Josh
Get these: Mozilla Opera OpenBSD
I have books for sale: "MCSD in a Nutshell" and "VB Distributed Exam Cram" - PM me for details. Will also trade for a decent ATX Pentium 2 MB/CPU/RAM combo.
-
May 2nd, 2001, 12:53 PM
#3
Thread Starter
Lively Member
The Data is not sensitive at all. That is why I put it out there that way. But I plan on making larger projects and I would like to know the best way to do them.
If I put the database above the Inetpub directory (such as D:\Database\Knowledgebase) the I_User still has to have Read,Write, and Execute permissions to the folder. Could this still be a problem?
Also, Is there a safe way to store a database in a free website where everything is stored in your public folder?
Thanks
Brandon
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote