Home > Archive > MS SQL Server > October 2006 > security questions









You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

 

Author security questions
Dan D.

2006-10-24, 6:29 pm

Using SS2000 SP4.

I've read in places not to put stored procedures that non-sysadmin users can
run in the master db but I never seen a good explanation of why not. Why not?

We want to dump some data out so a user can open it in excel. We'd like for
the user to be able to refresh the data at any time. Would it cause problems
to create an exe that would run a scheduled sql server job and let the user
run the exe whenever they want? Would the user need permissions to run the
job. If so would this be a potential security problem? I read about an
alternative where the user could set a flag in a table, via a web page maybe
and then the job would check the flag and run if the flag was set.

Thanks for your feedback,
--
Dan D.
Sponsored Links





Also available: Server administration forum archive | Web Design forum archive | Software forum archive | Hardware reviews archive | Programming forum archive

Copyright 2009 droptable.com