Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Categories

client - server db security

_yilmaz_yilmaz Member Posts: 150
Hi all,

I would like to develop a client - server / thin client
database project using Delphi. In this project, the .exe of
the program will connect to the server via passing the
user id and password.

What kind of security problems may I face?
For example, is it possible for somebody
to get the user id and password using this system?

And what kind of precautions should I take in case of such
problems?

Thanks in advance...

Comments

  • infidelinfidel Member Posts: 2,900
    : Hi all,
    :
    : I would like to develop a client - server / thin client
    : database project using Delphi. In this project, the .exe of
    : the program will connect to the server via passing the
    : user id and password.
    :
    : What kind of security problems may I face?
    : For example, is it possible for somebody
    : to get the user id and password using this system?
    :
    : And what kind of precautions should I take in case of such
    : problems?

    If you hard code the password and userid into the program then it is possible for someone to get those values out of it since they are just strings. However, if you only grant that user limited privileges in the database, then you can reduce the potential danger. If you can also limit who has access to and/or can execute the program then that's an added level of security.
    [size=5][italic][blue][RED]i[/RED]nfidel[/blue][/italic][/size]

Sign In or Register to comment.