S
Sam S.
Hello,
Not being familiar with later versions of Access I am somewhat confused
about operations of sandbox mode. An organization wide request has been
made to disable sandbox mode through the registry on each machine with access
because some reporting does not work.
After reading the MS documentation I was recommended against this without
first trying other options such as trusting a database, trusted locations,
digital signature.
My understanding is that by disabling sandbox through the registry we could
potentially be opening ourselves up to harmful code in other databases such
as if someone were to download a database from the internet.
I was then pointed to the following quote from another site which states:
"Remember that the database must either be located in a trusted location, or
bear a valid trust signature, for it to be possible to disable sandbox mode."
http://office.microsoft.com/en-us/access/HA101674291033.aspx
Question: Based on this and the flow chart associated with that it appears
that I was incorrect and that disabling Sandbox mode in the registry (Set reg
key to "0") will only disable Sandbox mode for trusted locations. Which
means that if by carefully defining trusted locations we would be limiting
our exposure?
How common a practice is it to disable SanBox mode in order to get apps to
run? Is it common that many issues are resolved by using a trusted location
without disabling sandbox mode?
Thank you very much for the feedback on this topic.
Not being familiar with later versions of Access I am somewhat confused
about operations of sandbox mode. An organization wide request has been
made to disable sandbox mode through the registry on each machine with access
because some reporting does not work.
After reading the MS documentation I was recommended against this without
first trying other options such as trusting a database, trusted locations,
digital signature.
My understanding is that by disabling sandbox through the registry we could
potentially be opening ourselves up to harmful code in other databases such
as if someone were to download a database from the internet.
I was then pointed to the following quote from another site which states:
"Remember that the database must either be located in a trusted location, or
bear a valid trust signature, for it to be possible to disable sandbox mode."
http://office.microsoft.com/en-us/access/HA101674291033.aspx
Question: Based on this and the flow chart associated with that it appears
that I was incorrect and that disabling Sandbox mode in the registry (Set reg
key to "0") will only disable Sandbox mode for trusted locations. Which
means that if by carefully defining trusted locations we would be limiting
our exposure?
How common a practice is it to disable SanBox mode in order to get apps to
run? Is it common that many issues are resolved by using a trusted location
without disabling sandbox mode?
Thank you very much for the feedback on this topic.