We have a Sybase ASE 18.104.22.168 database on Win2k. We have approximately 50 Win2k/WinXP workstations running a Visual Basic Front-end to retreive data from this database. Data Access is via an ODBC connection using the Sybase ASE ODBC Driver. The username/password combination is hidden in the VB-Application and is the same for all users.
The database server is in a secure environment and Windows Access Control is considered good. The clients are in a non-secure environment and Access Control is poor.
We have disabled the application if it discovers that Tracing has been switched on.
What are other security issues we need to think about? Do you have any recommended solutions?