How would I set up so that only my asp file have access to a folder containing my database?

I would be using IIS and access.

Any security issues I should be aware of besides that?

I'm trying to set up my own test web server for development and testing/learning purposes.

Anyone got url's to useful tips?
Please no 500 page explanations :)

regards, Xanoo

You can put your Access Database anywhere on your server so I suggest
putting it in a directory that is not accessable through IIS...