Re: Permissions not enforced
From: Sue Hoegemeier (Sue_H_at_nomail.please)
Date: 06/28/05
- Previous message: Hoof Hearted: "Re: Port 1433 is open to internet, how can I secure db?"
- In reply to: Hoof Hearted: "Permissions not enforced"
- Next in thread: Hoof Hearted: "Re: Permissions not enforced"
- Reply: Hoof Hearted: "Re: Permissions not enforced"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 28 Jun 2005 06:26:04 -0600
You can query master..sysprocesses to see how the user is
connecting, what login is used. If the user is connecting
using Windows authentication then the user is likely
inheriting permissions through membership in a group.
-Sue
On Tue, 28 Jun 2005 01:30:02 -0700, Hoof Hearted
<HoofHearted@discussions.microsoft.com> wrote:
>I have a pc set up with a System DSN to access my Sql Server. It is set up to
>use NT Authentication according to the Login Name.
>
>I have discovered that the User has full permissions to Select, Insert,
>Update and delete records in any table. In Enterprise Manager this User is
>configured to have just Select permissions on a few tables. Some of my tables
>are set up with Update and Delete permissions revoked for all Users and
>Roles. So it appears to me that the DSN is not using NT Authentication and
>that the User is being authenticated with sa permissions.
>
>Where am I going wrong?
- Previous message: Hoof Hearted: "Re: Port 1433 is open to internet, how can I secure db?"
- In reply to: Hoof Hearted: "Permissions not enforced"
- Next in thread: Hoof Hearted: "Re: Permissions not enforced"
- Reply: Hoof Hearted: "Re: Permissions not enforced"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
