I am the administratorDeveloper of the Colleges system that is currently generated in Filemaker 5.5. I have been informed that someone (not disclosed) has accessed areas of the system that are not allowed to. I have asked how this has been discovered and again this is not being disclosed but I have been told to plug the problem, unforuntately I have tested the system and I can not find a way through and other users have tested with the same result.

The only solution I can come up with is someone is logging on with someone elses password. Is there any system that could record the users name and the password they are logging on with? Or is there a better way.

I have changed all the passwords (very long and boring) so maybe this will resolve the problem but I am still not sure.

Any help would be greatly appreciated

Why don't they disclose?

Are the files hosted? Then save the event logs in case you need to figure out who was connected when and from what IP address.

You'll have to build a full audit log in your files. Not much fun in FM5 compared to FM8. If everyone is on Windows, I would suggest capturing the IP address and windows logon username for each session. I wrote an article in FileMaker Advisor on how to do this some years ago. Do a search on my name on Advisor.com and you'll find it.