Security infrastructure plan
From: Chris Beardsley (clb39@nospam-cornell.edu)
Date: 05/09/02
- Next message: Donna Lambert [MS]: "Re: How to use EFS to encrypt SQL DB file"
- Previous message: Sue Hoegemeier: "Re: NLBS"
- Next in thread: Sue Hoegemeier: "Re: Security infrastructure plan"
- Reply: Sue Hoegemeier: "Re: Security infrastructure plan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Chris Beardsley" <clb39@nospam-cornell.edu> Date: Thu, 9 May 2002 13:08:39 -0400
The DB's on our local test Server currently has everyone in the public role.
The public role has access to everything. This occurs to me to be a wide
open security schema (or does not exist, whichever your preference).
I was planning on making some more tiered access groups, then restricting
public to select only. The results would look something like this:
Full - all rights to select, insert, update, delete, and DRI - System table
access
Change - Rights to select, insert, update, and delete Denied DRI and system
table access
Public - Rights to select Denied Insert, Update, Delete and DRI and system
table access
Purgatory - Denied access to everything and system table access
What am I missing with this user formula? What could I potentially break on
the server (not App) if I implement this?
Responses directly to this, or additional security information would be
greatly appreciated.
Chris
- Next message: Donna Lambert [MS]: "Re: How to use EFS to encrypt SQL DB file"
- Previous message: Sue Hoegemeier: "Re: NLBS"
- Next in thread: Sue Hoegemeier: "Re: Security infrastructure plan"
- Reply: Sue Hoegemeier: "Re: Security infrastructure plan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
