masterlayouts Posted June 6, 2012 Share Posted June 6, 2012 Does it make any sense, security wise, to have the front-end separated by back-end of an application by storing the two sets of data in different databases? Or there are other ways how to separate one from the other, as per example by setting different privileges for users who access the database? Thank you. Link to comment Share on other sites More sharing options...
Larry Posted June 6, 2012 Share Posted June 6, 2012 I'm not sure what you mean by "front-end" and "back-end" but having two sets of data is a very bad idea. While you might think you're adding security, you're also introducing redundancy, which leads to bugs in databases. If by "front-end" and "back-end", you mean the public and administrative sides, then, yes, two different database users with different privileges is a very smart, secure approach. For example, the public database user may not be allowed to delete anything and may not have any access to specific tables, as appropriate. Link to comment Share on other sites More sharing options...
Recommended Posts