Paul McNett wrote: > MB Software Solutions wrote: > >> I had mentioned how I've successfully used SQLSTRINGCONNECT and SQLEXEC >> to add a simple audit record from my apps to a web database. My >> coworker asked about firewalls and how this might get defeated by them. >> I concurred, noting that I've seen how ZoneAlarmPro asks the user if he >> wants to allow the process to communicate with the web (and thus, the >> user could prevent it). >> >> He mentioned that web services use the http protocol so they probably >> had a better chance of getting through the firewalls. I told him that >> if that was the case, then the malware folks would probably be writing >> more and more for web services. >> >> Your comments appreciated. The goal is to get a simple audit of >> software usage amongst our clients spread out through the nation (and >> Canada). Like I said, my way is older, but may be prone to firewall >> blockage. > > Use your way, but do it over port 80 or 443. Only the most restrictive > firewalls out there would block http or https. https is better if you > want to protect your transmissions from prying eyes.
I should clarify: It looks like you are writing directly to a database from your client app. To do that over port 80 you'd use port forwarding or tunneling to convert incoming port 80 to internal port <whatever_your_database_server_uses>. But if you have other services listening on port 80, it could get complex very fast. What you should do is redesign it to the web service approach, which doesn't need to be complex. So your service communicates with your database, and your clients communicate with the service. Paul -- http://paulmcnett.com _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/[EMAIL PROTECTED] ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
