> Most database login mechanisms, by themselves, do not > constitute "secure > systems". Most common database platforms do not lock accounts > or timeout > access. Most common database platforms also have some known, > common logins. > To the extent that MS SQL Server is configured to allow only Windows > authentication, it will be protected by the same mechanisms > as any other > Windows OS login, but that's the exception (especially for CF users).
Well if all of this true, it /should/ be possible to have a secured DB access system by using all of these: 1. Non-standard access port 2. Non-standard user names 3. Enforced strong passwords that change periodically 4. Secured tunnel access (SSH, SSL, etc.) 5. Any other security practices I'm forgetting A few folks in this thread have mentioned 'big name' ISPs that allow remote DB administration, so it must not be considered a big security risk. Either that, or money talks! ;) [INFO] -- Access Manager: This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. A2 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:224363 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
