Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
heze
Posting Yak Master
192 Posts |
 Posted - 2006-03-22 : 00:30:06
|
| Hi,Where I work IT does not allow the departments to query their production databases, they argue performance and security issues. I have done some research but have no found convincing arguments, can anybody give me some advice or cite a link to get more info about the reasons for which we are not allowed access to query (select only) the live databases directly?thank you |
|
|
afrika
Master Smack Fu Yak Hacker
2706 Posts |
Posted - 2006-03-22 : 04:15:49
|
guess its quite simple.Yeah select only, but then again, mistakes do happen and they could be costly, If you accidentally delete records, What do you do?Many instances, people dont allow you to run commands directly, unless you call a SP. Its much safer. Then you can account who did what and when. rgds  |
 |
|
|
mr_mist
Grunnio
1870 Posts |
Posted - 2006-03-22 : 05:22:57
|
| Performance is an important issue. If your database is serving folk other than internal departments, then it's valid to stop internal people querying the live db. A badly written ad-hoc query could take out the system practically - I've seen it happen, all you need is for someone to miss a join criterion and your system is pulling back millions of rows to someone's console. What you should probably be asking is why isn't there a reporting server? If you've got a valid need to have access to the data then some facility should be in place. The live server could be log shipping to a reporting database for example, or something similar.-------Moo. :) |
|
|
|
|
|
|
Quesiton about database access denial