Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
ImaTools
Starting Member
3 Posts |
 Posted - 2009-06-10 : 08:12:26
|
| I use SQL Server 2005. I also use mixed mode authentication BUT I removed the the Windows Administrator account from the LOGIN accounts.I wish that outside me as DBA all other access to the data and schema be restricted to my .NET application. No other person should otherwise have access to the database. Not even the Administrator of the host sever OS.My .NET application provides facility for making backup files and restoing same when needed.My challenge is: How to protect/secure the backup file such that it cannot be restored into another instance of SQLServer unless of course that instance has the same LOGIN & PWD as I have on my original instance.At present I found out that I can pick up the backup file, walk over to another computer with SQL Server (even SQLExpress) with Windows authencation and the database is fully restored.imatools |
|
|
ImaTools
Starting Member
3 Posts |
Posted - 2009-06-11 : 08:03:05
|
| Well I gues I got something that might just do for now.What we need, I believe is to password protect the backup files.You can use SSMS to backup/restore a database. SSMS however does not provide for passwording the backup files and even if it did it will be useless in this scenario.T-SQL backup/restore provide options for passwording not only the backup files but also the backup media. but note that any access restriction on a media can be revoked by the computer system administrator. Therefore we really are left with the option of passwording the backup file - anybody see any holes in this?any better - more reliable - solutions are still welcome please.Vie@Abujaimatools |
 |
|
|
Transact Charlie
Master Smack Fu Yak Hacker
3451 Posts |
Posted - 2009-06-11 : 08:12:15
|
| Probably better to just use a pgp encryption scheme on the backups if you are worried about them. Provides security over and above what you want anyway.Just don't loose the keys.Charlie===============================================================Msg 3903, Level 16, State 1, Line 1736The ROLLBACK TRANSACTION request has no corresponding BEGIN TRANSACTION |
|
|
|
ImaTools
Starting Member
3 Posts |
Posted - 2009-06-17 : 07:26:51
|
| Thanks transact Charlie. however i am looking for something i can integrate into my application codeimatools |
|
|
|
|
|
|
Securing SQL Server backup File