A READER ASKS: Tool That Allows Viewing Filemaker File

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

A READER ASKS
Im looking for a tool that allows only viewing a FileMaker file.

I have searched for it by Google. But there are no results.

Do you know if there is some kind of program available?

-------
DWAYNE RESPONDS
Well, you can configure a FileMaker account to have view only access. Then you can use FileMaker to see the file, use IWP for web access or use another web technology to see the data.
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.

====================== ADVERTISEMENT ==============================
For more information on the InBizness SOHO and other quality FileMaker framework solutions, please visit http://www.dwaynewright.com/solutions.html

FILEMAKER: FileMaker Security Changes And Networked Solutions

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

Prior to the release of FileMaker 7, one major inconvenience was that if you needed to make a change to the password, group or access privileges to a FileMaker file(s), those files would have to be taken off the network first. Another inconvenience was that if all the files need one security change, they have to be taken off the network and changed one at a time.

Now that was then and this is now ... well I guess that is the case unless you are still running a version of FileMaker prior to FileMaker 7. If that is the case, here is another good reason to upgrade.

FILEMAKER 7 MADE SECURITY SO MUCH BETTER
There hasn’t been that many changes in FileMaker security from version 7 to version 9. Most developers feel that this is just fine, because FileMaker got it right with version 7. For example ...

You can make security related changes in FileMaker 7 and higher solutions while the database is actively hosted. If you create your FileMaker 7 and higher solution to use multiple tables within a single file, you can define security changes to all the tables from the same primary security dialog box.

If you have a multiple file solution, security changes in each file will need to be set individually ... but ... if the changes are very basic (like changing a password or assigned privilege set) ... then you may be able to use ScriptMaker script to make those changes for you. ScriptMaker being a great aid for automating time consuming redundant tasks can be used to make basic level security changes. This can be accomplished as one script calls upon another script in another file.

Here are some links to other posts that might be of interest in regards to this topic...
EXAMPLE: Scripting Account Administration
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.

====================== ADVERTISEMENT ==============================
For more information on the InBizness SOHO and other quality FileMaker framework solutions, please visit http://www.dwaynewright.com/solutions.html

FILEMAKER: Starting A Series About Security Issues

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

I’ve gone back and forth about whether to include a chapter regarding security issues for FileMaker designers. By talking about security issues in FileMaker systems, it’s possible that I could educate both the good developer and the person that wants to get around security settings. After much debate, I’ve decided to go ahead.

As many you you know, a lot of my blog content is based upon a series of FileMaker 6 training guides I self published between 2002 and 2005. Even more of you know that FileMaker overhauled the entire security setup (a vast improvement) when FileMaker 7 came out. This next series of posts are going to be a review of what was true for FileMaker 6 and seeing if it is still true now.

As we have mentioned many times before, the reality of it all is that if someone is determined to hack into anything, they will be able to do so given enough time. There are a number of things you can do to protect your FileMaker solution.

Using a combination of strong account and privileges settings, good FileMaker interface design, storing database files in a secure location and (even possibly) removing admin features using FileMaker Advanced, you are likely to have superior security protection for your solution.

The thing is .... If you DO NOT invest the time and effort to really test your security settings, you WILL NEVER REALLY be sure how effective your security settings are protecting your database. Education and implementation are key but without testing, you may fall short in critical key areas.

Much of your security goals break down into ...

- keeping the files on the network, limit the ability to someone to copy your databases as physical files that can then be broken down outside of the office

- limit the ability for users to extract data from the database such as exports

- limit the ability to let users edit fields / scripts / relationships that can expose information or allow them to edit information that controls the way the database solution operates

- build behind the scenes auditing to see what users might be doing what within your database

The saying that keeps coming to mind it ... “Just because I’m paranoid, doesn’t negate the possibility they actually ARE OUT TO GET ME.”
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.
====================== ADVERTISEMENT ==============================
For more information on the InBizness SOHO and other quality FileMaker framework solutions, please visit http://www.dwaynewright.com/solutions.html

EXAMPLE: Serial Numbers

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

In this example, we have setup a serial number checker. I simply pulled a calculation out of thin air. This example is not a particularly great one but it does illustrate the technique. I don’t think I would use it in a production system but I might in a pinch.

First things first, I have four data entry fields that can hold up to 4 characters each. The characters can be / should be alphanumeric. I have five different variables I used to get numbers and the numbers need to add up to 10.

First off, I’m taking the first field and pulling the number values out of it by using the GetAsNumber(Serial Number 1) calculation. So e8au equals 8 and h7ga equals 7. So in this serial number system, the first field can really only hold one number.

Then I am looking at the first character in field 1, second character in field 2, third in field 3 and last in field four. Based upon what it is, I’m giving it a number result. So eight of the twelve overall characters in this string are being ignored by my checker.

I also built a script that will generate good serial numbers for me. The weakness in this design is that the right number in the first four characters will always give you a good serial number.

Again, this was for demonstration purposes only. You can easily noodle with the example for a few hours and come up with something very impressive. You could also do things to make sure a particular character is in upper case or lower case. Just about any wild thing you can imagine that works and you can create a script to create a high number of valid serial numbers on demand.

An example file can be downloaded at ...
http://www.dwaynewright.com/blogfiles08/Serial.zip
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.
====================== ADVERTISEMENT ==============================
Click Here To See The FileMaker Book (via a blog) homepage!
===================================================================

FILEMAKER: Creating A Serial Number System

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

Many FileMaker developers create FileMaker solutions that can be used in outside companies and workplaces. In this way, they become software publishers that used FileMaker as their database engine. When the developer distributes a trial copy of the solution, they may want to use a serial number validation or activation system that you find in many commercial software packages ( including FileMaker products ).

There are a number of steps you will need to plan if you want to implement such a tasks. One is that you need to figure out a serial number format. This format has to be obscure to the casual user but needs to have a way to indicate if a entered serial number is valid. This serial number format is usually alpha numeric and consists of 10 to 16 characters. You can include special characters if you like. If you want to make it case sensitive, you will need to use the Exact text function somewhere in your logic. You may also want to avoid the use of characters that can easily be confused such as the number zero and the letter 0 ( 0 - O ).

It may go without saying but valid serial number checking will need to be part of the opening script of the main file. Generally, the developer will want to key the opening scripts and key productivity scripts in all files to the status of a valid or invalid serial number entry. Some operations or navigation may be disabled for missing or invalid serial numbers. You will also want to build in a way to encourage the user to register and enter in a valid serial number.

Finally, you may want to have a way to have FileMaker build you a bank of valid serial number codes. If your product becomes wildly successful, you don’t want to have to spend time doing this by hand. Although as problems go, the ones that come from the wildly successful variety ... usually are the least painful!

=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.
====================== ADVERTISEMENT ==============================
To check out the online FileMaker Crosswords, please visit http://www.dwaynewright.com/crossword.html
===================================================================

A READER ASKS: Launcher Files And Security Breaches

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

A READER ASKS
Ok is there anyway to make a launcher file for a networked database NOT a security breech? I have a launcher file that I do not want to put all user accounts in and when it logs itself in as the default account for the file, those permissions flow through to the networked file creating a situation where I can log in as papa smurf with no password and the system goes, come right in and see what I got! The account is not one that is in the hosted file and I am issuing a relogin command from the opening script in the hosted file. If I don't it just goes right in no security at all. Cool.

This leads me to believe that if I see a file that I can't get into all I have to do is host it, create a launcher file for which I do know the password and launch it that way and I am in like flynn.

This is not the first major security hole I have found but I think it might be the biggest.

Any ideas? Am I missing something glaringly obvious?

Thanks in advance for any light you may be able to shed on this.

-------
DWAYNE RESPONDS
Well, this is a very good illustration of the adverse relationship between productive flexibility and security. There are a number of options you can add to a FileMaker database that introduce potential security holes. There are a huge number of security protection features that make the database more of a challenge for users to deal with. This is one of the main reasons why security of a database solution is never complete. You simply arrive to a point in which you feel comfortable with what you have at the moment.

It is true that anytime a user can have physical access to a file and that file has security related information within it ... there is a definite security risk. It doesn’t matter if we are talking about data or schema. If someone has a file, the resources and the determination ... it may eventually get exploited.

The real answer is to protect the database as much as you can and try to add in the ability to see where you security might be compromised. If you are using FileMaker Server, there are a number of different things you can do to increase the security of the databases it hosts. Most of these are included in the manuals that come with FileMaker Server. Leveraging the built in features FileMaker provides for you is always your first step in securing a solution.

You can add layers on top of the FileMaker default security layer that can enhance your ability to protect your database or to see where a security breach is taking place. Most of these methods can be found in the Get family of FileMaker functions (although there are a couple Design functions and perhaps Custom functions that might be useful).

If you were to log startup information such as the following functions provided ...

Get ( AccountName )
Get ( FileMakerPath )
Get ( HostApplicationVersion )
Get ( ExtendedPrivileges )
Get ( PrivilegeSetName )
Get ( SystemDrive )
Get ( SystemIPAddress )
Get ( SystemNICAddress )
Get ( SystemVersion )
Get ( UserName )

DatabaseNames
WindowNames {( fileName )}

You may have a trail of bread crumbs you can use to detect and isolate security breaches. If you can detect and isolate, you are well on the way to knowing how to best protect the database going forward.

For example, you can record the account logged into the system, its IP address and information about the computer it is running on. If all of a sudden you see an account using a totally new computer, you may want to follow up on what is going on.
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.

====================== ADVERTISEMENT ==============================
For more information on the Virtual One On One Training, please visit http://www.dwaynewright.com/training.html
===================================================================

FILEMAKER: Time Bomb By Number Of Records

From Dwayne Wright - Certified FileMaker 9 Developer
WEB: www.dwaynewright.com
EMAIL: info@dwaynewright.com
TWITTER: dwaynewright

In this example, we are showing how a file can automatically quit after a number of records in the file have exceeded a determined number.



This is done by testing to see how many records are in the file. If it exceeds a determined amount, the file will automatically close.

By default, we have set the number of records the file can obtain to 10.

We have provided a few buttons ( red in color ) that will allow you to help you in testing how the method works. One will create enough records to exceed the allowed number. The other will bring the files record count back down to one record.

FYI... We have also built in a backdoor so that we can open the file even if the date range has passed.

An example file can be downloaded at ...
http://www.dwaynewright.com/blogfiles08/TBRecNum.zip
=
More info about the author and FileMaker in general, contact me at info@dwaynewright.com.

© 2008 - Dwayne Wright - dwaynewright.com

The material on this document is offered AS IS. There is NO REPRESENTATION OR WARRANTY, expressed or implied, nor does any other contributor to this document. WARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. Consequential and incidental damages are expressly excluded. FileMaker Pro is the registered trademark of FileMaker Inc.


====================== ADVERTISEMENT ==============================
For more information on InBizness Money including screen shots and tutorial movies, please visit http://www.dwaynewright.com/solutions.html
====================================