> Not allowing someone to read or write information to a database is partial security. Encrypting that data is also partial security. VFP tables are files on a network shared server drive and can be deleted - that's something you cannot secure. If the data resides on a SQL Server, or Oracle Database Server, the files that the actual data reside in are not accessible to be tampered with.
>
>Wayne

The COM objects log on the server with a different user name and password than the user has. Only the COM object user name has rights to access the data. The user can't even see the files.