Sunday, March 11, 2012

"simple" security?

I've heard that SQL Server's security system is good, but complicated. What
is the easiest way to:
1. Limit who can make structural changes to the database, including stored
procedures.
2. Limit read access to certain tables or fields, and limit write access for
others.
At this point, I don't need something totally bulletproof. Just plain
serviceable would do for the time being.There are some database roles called db_datareader and db_datawriter that
allow a user to either read or write to tables. Apart from those, you could
just not grant any rights at all to a user, but give him explicit SELECT,
INSERT, UPDATE, DELETE permissions on a table. You can find a brief overview
of SQL Server security model at:
http://vyaskn.tripod.com/sql_server...t_practices.htm
--
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"Paul Pedersen" <no-reply@.swen.com> wrote in message
news:uaZAPfjXFHA.2420@.TK2MSFTNGP12.phx.gbl...
> I've heard that SQL Server's security system is good, but complicated.
What
> is the easiest way to:
> 1. Limit who can make structural changes to the database, including stored
> procedures.
> 2. Limit read access to certain tables or fields, and limit write access
for
> others.
>
> At this point, I don't need something totally bulletproof. Just plain
> serviceable would do for the time being.
>
>
>|||Thank you. I will try to find something "simple" in there...
"Narayana Vyas Kondreddi" <answer_me@.hotmail.com> wrote in message
news:%23ZEoqijXFHA.3732@.TK2MSFTNGP10.phx.gbl...
> There are some database roles called db_datareader and db_datawriter that
> allow a user to either read or write to tables. Apart from those, you
> could
> just not grant any rights at all to a user, but give him explicit SELECT,
> INSERT, UPDATE, DELETE permissions on a table. You can find a brief
> overview
> of SQL Server security model at:
> http://vyaskn.tripod.com/sql_server...t_practices.htm
> --
> Vyas, MVP (SQL Server)
> SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
>
> "Paul Pedersen" <no-reply@.swen.com> wrote in message
> news:uaZAPfjXFHA.2420@.TK2MSFTNGP12.phx.gbl...
> What
> for
>

No comments:

Post a Comment