Re: BCP and security
From: Dan Guzman (danguzman_at_nospam-earthlink.net)
Date: 07/15/03
- Next message: Dan Guzman: "Re: user's rights"
- Previous message: Vinodk: "Re: Sql Server broadcasts on port 1434"
- In reply to: Panos Stavroulis: "BCP and security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 15 Jul 2003 08:15:34 -0500
As far as SQL Server is concerned, BCP and the other utilities are
application programs. Database permissions are determined by the login
used to connect to the database server. You can use Windows-only
authentication under a minimally privileged account to mitigate risk.
-- Hope this helps. Dan Guzman SQL Server MVP ----------------------- SQL FAQ links (courtesy Neil Pike): http://www.ntfaq.com/Articles/Index.cfm?DepartmentID=800 http://www.sqlserverfaq.com http://www.mssqlserver.com/faq ----------------------- "Panos Stavroulis" <nospampstavroulis@hotmail.com> wrote in message news:096501c34ab7$ba5132a0$a401280a@phx.gbl... > Hi, > > I need bcp on a Web Server. I've installed bcp but to do > this you also need to install Query analyser etc. The > installation CD doesn't give you the option for bcp only > installation. > > Does anybody know of any security implications? ie if a > hacker gains access to the Web server can they use bcp and > any other installed components to damage our database? Is > bcp safe on it's own. > > Thanks very much, > > Panos, London.
- Next message: Dan Guzman: "Re: user's rights"
- Previous message: Vinodk: "Re: Sql Server broadcasts on port 1434"
- In reply to: Panos Stavroulis: "BCP and security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
