Re: Beginner security questions

From: Mary Chipman (mchip_at_online.microsoft.com)
Date: 03/31/04 

Date: Wed, 31 Mar 2004 08:11:05 -0500

If your goal is to learn how security works by playing with it, the
quickest way is to enable mixed-mode authentication. Then you can
create SQL logins (which are unavailable in Windows Only mode) and
assign them permissions, which you can then test using the Query
Analyzer, which lets you open multiple connections based on different
logins. Once you've tested and debugged security using SQL logins to
mimic your eventual Windows logins, you can delete them and assign
Windows logins to the roles you've created and set your security mode
back to Windows only for production. Not sure which textbook you are
using, but this site has lots of useful resources:
http://www.microsoft.com/sql/techinfo/administration/2000/security/default.asp

--Mary

On Tue, 30 Mar 2004 12:56:10 -0800, "Jack Wachtler"
<jack_wachtler@comcast.net> wrote:

>Thanks in advance for your patience with my beginner questions.
>
>I have a SQL Server instance setup on my XP desktop (the 120 day Evaluation Edition - V8.00.194). When I installed it I setup the instance with "Windows Only" authentication.
>
>I have myself and my wife with XP user accounts and also have a guest user account active. I created a database for practice, and would like allow either my wife's account or the guest account to login and access the one practice database, with select priviledge's only on tables. Ideally from these "user" XP accounts, I would like to allow access to my practice database only through the Query Analyzer Window. I don't want to allow these accounts to see other databases or system tables. I don't want them to be able to stratup Enterprise Manager or any tool other than Query Analyzer for the one database.
>
>What are the steps I need to follow to create permissions? After I do these steps, I want to log in through the guest account and see that my security setup works.
>
>I have read the chapters in my textbook on security, but still don't really get it. I guess I need a simpler example that I can practice for myself.
>
>Your help in teaching a newbie is greatly appreciated.

Relevant Pages

  • Re: Windows permissions to run Jet OLEDB 4.0
    ... in SQL Server or not when you have to go outside of the server to the ... Actually I was talking about Windows logins. ... There is no security whatsoever implemented on the mdb ...
    (microsoft.public.data.oledb)
  • Re: Running top without a shell -- more questions
    ... there are HUGE security concerns. ... But it's shell escapes that generally create the security concerns, ... I am not suggesting changing the standard software! ... J> top on the ttyv on which logins are no-longer allowed. ...
    (freebsd-questions)
  • Re: loging in and out user?
    ... > Security auditing server characteristics: ... > Final resource action: purge oldest audit events ... TELNET logins sometimes show up as network ... Unofficial OpenVMS Hobbyist Support Page: ...
    (comp.os.vms)
  • Re: root password and su (maybe)
    ... My suggestion to appease your "security minded" boss: ... Configure SSH to allow only key-authenticated logins. ... the root password is useless for anything except logins at the ...
    (RedHat)
  • CANT ENFORCE GPEDIT.MSC SECURITY TO NEW ACCOUNTS
    ... I have a win2k terminal services server and security enabled on it by ... I have exisitng generic user logins working fine by referencing their ... TS profile pointing locally to the TS server ... 1...I log in and the security settings appear not to be applied. ...
    (comp.os.ms-windows.nt.admin.security)