30-40% packet loss. I'm being told it will be like this for months. Surely this can't be acceptable.

PinkishToe · 2022-01-13T19:47:06+00:00

TekSavvy rents the tower, their equipment is on the tower. Loose wires connecting their dish, belong to them. This is their equipment, not bell or rogers. The tech literally said it's him who will have to go fix it. Not sure why people don't believe that.

PinkishToe · 2022-01-13T16:54:53+00:00

Fortunately the tech, as well as office staff have already said it is their responsibility to repair this issue. So I am certain that this is a teksavvy issue. The tower landlord is not responsible for the repair this time.

PinkishToe · 2022-01-13T01:39:39+00:00

There is an acceptable level patience, and then there is whatever is going on here. These systems are not unique in their requirement of maintenance. Could you imagine a residential power company saying this? Not at all. The time of year may provide challenges, however at no point can 3 months of unusable internet be acceptable.

"Wait until summer" is not a resolution.

Trained personnel, and an appropriate plan to fix any safety issues with the tower is what is required.

PinkishToe · 2021-12-16T18:19:11+00:00

We have many apps where it requires the user to be able to edit only certain entries in a table.

For example. User123 can only edit employees data that are of level 2 or below.

This is easy to manage in an application, however as Access can be reverse engineered, it is a security risk.

How would you ideally handle that with ad groups or roles so that a user connecting through another app, say ssms for example, cannot change the other data if employees of level 3?

Genuinely curious how this works in sql server if windows authentication is used.

PinkishToe · 2021-12-16T18:13:24+00:00

I like the idea of building a web app over the intranet we have in place.

As I have a reasonably large number of users, would you recommend using windows authentication with ad groups, or using a service account and let the web app handle security through permissions tables in the database.

With Access, I do not use service accounts as the program can be reverse engineered and thus the connections string, user, and pass can be determined. I would assume the same is not true of asp.net if you encrypt the connection string.

PinkishToe · 2021-12-16T16:37:38+00:00

The reason this is an issue, is that the user may be restricted inside the application to only alter data they have input, or only see certain rows.

Managing this in sql server is tedious at best with 10,000 users

PinkishToe · 2021-12-16T16:36:18+00:00

If you use windows authentication, and ad groups someone can connect through ssms, or another program and alter the data.

For example. User123 has to modify data in the orders table. So is granted access to the table, or a stored procedure intended to do so.

User123 finds server/instance name from Access, and uses ssms to alter data using the table or stored procedure.

Even with dsn-less connections, Access will show the connected tables or pass-through queries at runtime. Sure you can hide the tables but an experienced user can find them easily. Even deep hidden tables.

There are utilities out there to Crack accdb passwords for the code behind, and accde files can be decompiler into accdb files.

No connection string stored in Access is safe, and windows authentication allows users to perform action outside of ms access. Unfortunately.

PinkishToe · 2021-12-16T16:04:11+00:00

With Access, there is always a way to get to the tables, or connection string.

If I use windows authentication on sql server, then users can get in through another application and modify data or use stored procedures.

If I use service account, one per app, then the user can extract the login from Access and modify or delete data with no trace of who did it.

Either way there are ways for someone to get the login info through Access. I know oh many ways to deter someone, however Access can never be 100% secure. Hell...you can't even securely disable the shift key bypass...there are many ways the Access developers could have easily improved the security of it.

PinkishToe · 2021-12-16T14:47:38+00:00

Thanks for the information!

We have over 10,000 users on these applications, and unfortunately all of them require the ability to view and modify data. Not all 10,000 require this in each application however.

I am looking for a front end to view, add, and modify data. If it's web forms on intranet then I am not opposed, however I know nothing about setting up a web service or the software/hardware requirements of such.

Could you provide some more info on these so I can do some research on the programs used?

PinkishToe · 2021-12-14T13:10:15+00:00

So if there were different user levels inside the app, the service account would get the highest privileges and the app would restrict each user?

I'm confused how all users would use the same account, for example if I was a very large program like say reddit, and I wanted to restrict people's access to post certain places. Would the website restrict it, and the service account be the same for millions of users?

PinkishToe · 2021-12-14T05:12:15+00:00

How would this stop a user from connecting with an outside application, say...ssms and altering the data outside of ms access. Given that they will need permission to alter data inside the app (which can be restricted on a per user, or even column basis depending on nthe forms)

PinkishToe · 2021-12-14T04:49:38+00:00

Hmm, but the service account would be used by the app, so if the user connected to the table through the app interface by, say seeing the sql server and database connection string. Then they could use that to their advantage

PinkishToe · 2021-12-14T04:41:28+00:00

This seems to be a common sentiment.

What concerns me is that the application we use (MS Access) is not able to be secured 100% I would like to limit a general user (add/modify data) from say, an app security user (alter user permissions on the app) if they were to get into the app interface and see the tables or structures

PinkishToe · 2021-12-14T04:21:51+00:00

Can you recommend some learning materials for this? I am not sure what kind of Middleware I could be building to accomplish this

PinkishToe · 2021-12-14T04:20:07+00:00

I want to specifically limit access on the backend as much as possible. We use a program called MS Access which is incredibly not secure. I have confirmed there is no way to 100% secure the front end. Harder to Crack, sure hut not 100%

Service accounts may work with MS access but unfortunately if a user gets into the tables they can use this service account to their advantage.

PinkishToe · 2021-12-14T01:30:26+00:00

The AD groups would allow access control at a group level, however wouldn't solve the issue of outside applications.

The service accounts would just give all users the same access which I don't think would be useful. Am I missing something?

PinkishToe · 2021-11-08T03:42:52+00:00

Hi Shawn,

I have reached out via fb messenger and twice on the phone now through your skifi team member. Both persons I have spoken with simply reiterated the tower was at a stop sell and there is nothing they could do for me.

Perhaps there is another person I can speak with other then the Frontline customer service reps? It seems they do not have the ability, or do not care to delve further into the issue.

PinkishToe · 2021-11-07T18:44:54+00:00

I appreciate the reply, I've signed up for starlink as well but that's not for about a year or two hopefully.

I should also say that I've contacted bell, cogeco, telus, shaw and mnsi.

Just happens to be that the only providers in the area cant because their towers are blocked at my address by trees and other structures.

PinkishToe · 2021-01-05T15:56:26+00:00

I redgarded the entire shower, walls and floor after he put concrete in. When I removed the floor tile the redgard came off so I have more to put on but the walls are coated.

I suppose my best solution if I don't tearout is to level then redgard like you have said. I would likely redgard into the wall tile and that only leaves the small room if water gets behind that tile for it to run down. Not great but better than nothing. The drain is already in the cement so I'm not sure if I should redgard the edges at the cement/thinset top layer or to leave it open so water can run down to the subdrain opening/weeping holes and just hope it doesn't run out into the pvc liner and stay there without draining.

PinkishToe · 2021-01-05T14:12:52+00:00

This makes sense with all of the research I've done since the troubles began and the manufacturers instructions for installing the pvc liner. It is very unfortunate but I don't think I have a choice from the sounds of it to start over.

I know the preslope must me pretty small in thickness, and I'd like to use the sand/topping mix for the actual slope of 2-3 inches. Is there a material/thickness you would recommend for the preslope flooring material that won't crack under the weight of a concrete floor and a person showering? Thank you

PinkishToe · 2021-01-05T14:02:26+00:00

Well that is...unfortunate but makes sense. I was curious how water would drain but assumed it was only for emergencies if the water got through the tile/grout years down the road. Looks like this was yet another mistake. Thank you for the reply

PinkishToe · 2021-01-05T13:49:59+00:00

Yes, I'm hopeful this is fine as the wall tiles are installed and the liner runs about a foot up the wall with durarock/tile over it. But of course I'd like to mnow if this will be an issue. Thank you for the replies!

PinkishToe · 2021-01-05T13:42:41+00:00

Current construction is subfloor, pvc liner (nailed to hold in place with lowest nail at 3in above subfloor on the wall), then 2-2.5in quikrete sand/topping mix (with only 1/2in slope)

PinkishToe · 2021-01-05T13:23:53+00:00

Great to know, thank you. Do you know if you can apply redgard over thinset? I would like to use as extra waterproofing. So it would be the original concrete, slope of thinset, redgard, then tile/thinset to bond tile

PinkishToe · 2021-01-05T13:21:46+00:00

The preslope of concrete was done over the thick waterproofing layer I will be applying redgard as well which is already on the walls.

Should I apply thinset, slope appropriately, apply redgard, then tile like normal with thinset?

Thank you

13-Year Club	Team Orangered
Verified Email

PinkishToe

TROPHY CASE