i noticed with enterprise manager that you cannot edit the value of
USER
from security-> logins -> "select a user" if you select a user you create and go to database access tab you can edit the value of USER (which is the same value that select USER in the code would have)
but you cannot do this for login sa
why is that? and is there a way to edit this? cause i kinda need to change this for legacy issues with some old code if possible
NEVER EVER under any circumstances use any administrator login for an application. This is regardless of which database or other supporting application being developed for. The fact that the legacy app uses it does not make it a proper practice. It is a huge security risk and makes the entire database server vulnerable for no good reason.
They wanted to login using sa and the password? But why? Did they give a reason? Or are they just too lazy to tell the DBA which permissions that they require on the server?
well the reason made me laught they said the application was writeen in spagety code, with the username and password all through the code :) turst me i know tw its writtein in a o-o language i dont quite understand it myself but anyways they said they didn't want to go back through it all if there was a way to edit the username (not login or password just name displayed when using USER) for the sa account :)
i told them no there wasn't and it wasn't overly secure to use sa guess we shall see
Tell your developers there's a way they can do a SEARCH their code! It's a great feature. Some of the more advanced software development tools (written since, say, 1984) even include a SEARCH/REPLACE function !
chaning sa login details
Posted - 01/11/2005 : 00:44:53
