| Author |
Topic |
|
CSK
Constraint Violating Yak Guru
489 Posts |
 Posted - 2006-06-20 : 05:53:33
|
| Dear all, Is it possible to restrict the insert , update , delete in isqlw through login mode sa, sa-- KK |
|
|
timmy
Master Smack Fu Yak Hacker
1242 Posts |
Posted - 2006-06-20 : 17:58:29
|
| Why do you want to do this??According to BOL, sa is a member of sysadmins by default (and can't be changed). So I don't think so. |
 |
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2006-06-20 : 21:17:56
|
an explicit deny on the permissions you just mentioned? but SA is sysadmin so if the person who uses the SA account and sees the error, he/she can just remove the denyi suspect your sa password is compromised? just change it and keep it in a safe place  --------------------keeping it simple... |
|
|
|
CSK
Constraint Violating Yak Guru
489 Posts |
Posted - 2006-06-21 : 01:35:16
|
| OK Thanks!In sa password also I need to restrict the access. Because in our client place somebody hasintrude the attandce details.(They Put Present for absent days also) that's y the client need the securityplease suggest any way to protect the db in isqlw-- KK |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2006-06-21 : 02:04:43
|
| you cannot restrict the sa account, avoid using this account, reset the password and hide it where only you (i'm assuming you're the DBA) can accesslock down the database, be sure that no one is provided direct access to the database, only via stored procedures and through your attendance software/apps (if none, create one),for your apps, encrypt the logon credentials, or use approle, do source code control,etc....the root cause of your problem is that your database is not secured, you need to secure the server then the database--------------------keeping it simple... |
|
|
|
CSK
Constraint Violating Yak Guru
489 Posts |
Posted - 2006-06-21 : 02:40:14
|
| Thanks Jen !if there any problem will occuer we can change the default password (sa)..?i am not a dba Just i am acting as a DBA for a while-- KK |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2006-06-21 : 03:03:24
|
| ok, here are a few things that might be affected if you change the password, so you need to plan this out or you'll be receiving a lot of emails and calls from users 1. applications using SA account2. instead of windows authentication, you're using SA to connect to the sql server for sqlserveragent (enterprise manager, management,right click sql server agent, properties, connection)3. linked servers using SA account--------------------keeping it simple... |
|
|
|
CSK
Constraint Violating Yak Guru
489 Posts |
Posted - 2006-06-21 : 03:14:46
|
| thanks Jen!But I am Sure I can avoid those thingsBecause We are not using windows authentication mode and linked server.using sa and saBut i have option to change this.we are using connection throguh dll only.enough to change the password in dll onlythanks for spending ur Valuable time for me-- KK |
|
|
|
|
Restriction IN ISQLW