Custom Auditing

---

• From: "Michael MacGregor" <nospam@xxxxxxxxxx>
• Date: Fri, 20 Jul 2007 10:55:46 -0400

---

We are having to implement restrictive security permissions on SQL, some of
which requires that we audit and log any access of any kind for specific
tables and columns. What would be the best way to do this? We can use
triggers to log any changes to specific tables and columns, but we can't use
those when a user is simply retrieving sensitive and encrypted data from a
table. We could lock down access permissions to those tables so that only
authorized users can execute stored procedures, and have code to log such
access in the procs themselves, but we need to ensure that even if the dbo
or sa were to access that data, that it would be logged.

TIA

Michael MacGregor
Database Architect


.

---

• Follow-Ups:
  • Re: Custom Auditing
    • From: Russell Fields

• Prev by Date: JDBC-SSL - MS SQL Server 2000 issue
• Next by Date: Re: Custom Auditing
• Previous by thread: JDBC-SSL - MS SQL Server 2000 issue
• Next by thread: Re: Custom Auditing
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.sqlserver.security  > 2007-07