VFP allows users to retrieve connection passwords

Plateforme Level Extreme

Abonnement

Profil corporatif

Produits & Services

Support

Légal

English

VFP allows users to retrieve connection passwords

Message

08/07/2005 11:15:51

Cetin Basoz
Engineerica Inc.
Izmir, Turquie

08/07/2005 07:06:40

Andrus Moor
Tallinn, Estonie

Information générale

Forum:

Visual FoxPro

Catégorie:

Client/serveur

Titre:

Re: VFP allows users to retrieve connection passwords

Divers

Thread ID:

01030325

Message ID:

01030494

Vues:

Andrus,
Do you need the connection open when they're modifying the report? And/or if they're not modifying something that would effect SQL resultset SQLDisconnect() first. Best would be using trusted connection of course.
Cetin

>My application connects as privileged user to SQL server using
>
>

this.nConnHandle = sqlstringconnect( m.cConnString )

>
>sqlstringconnect() returns 1 or some other predictable small integer as this.nConnHandle value.
>
>I allow users to customize reports.
>
>User can add an expression sqlgetprop(1, "ConnectString") to
>output form. This returns the connection strings which contains
>password!
>
>Any idea how to prevent users from retrieving connection password ?
>Is it possible to override (re-define) sqlgetprop() to prevent usage of ConnectString parameter ?

Çetin Basöz

The way to Go
Flutter - For mobile, web and desktop.
World's most advanced open source relational database.
.Net for foxheads - Blog (main)
FoxSharp - Blog (mirror)
Welcome to FoxyClasses

LinqPad - C#,VB,F#,SQL,eSQL ... scratchpad

Répondre

Fil

Voir

Click here to load this message in the networking platform