>How safe is a FoxPro system (desktop) that uses an SQL database at a remote site through ODBC over the Internet?
>
>Can data be intercepted and easily read by unauthorized people?
>
>I know the truth is that there I so much data going over the Internet that there is safety just in the fact that no one would bother to try to trap MY data. However Clients always think that some criminal will spend thousands of dollars to find out who my Client sold their last case of toilet paper to. NOT Likely, but possible.
>
>How safe is SQL data?As safe as you make it. If the data should be protected, use encryption. Sure, you can use SSL through and HTTPS connection, but that covers only the transimission, not the life of the data before and after. Use VPN or some form of tunnelling. Don't rely on "security by obscurity" (
safety just in the fact that no one would bother to try to trap MY data). It doesn't work. If somebody wants it bad enough, they'll get to it.
Also, always remember that the easiest way to get to the data is from the inside. It might not be politically correct to remind your clients that data (and access to it) should be protected internally too, but it *is* the easiest point of compromise. If it is important enough, protect it through the use of SQL Server, Access Control Lists (ACL) and encryption (at least to part of it, like SSN, Credit Card numbers, salaries or sales figures).