Posted on 2004-04-30
I'm using msde2000. In my app i'm using sql security for the databases. I also provide functions in the application for backup and restore.
My backup function, calls the this sql command: backup database <dbname> to disk = 'fisicalpath'
where fisicalpath is often on a removeable device like pendrive or zipdisks.
On target machine i disabled the trusted connection by denying access to any windows user (particullary BUILTIN\Administrators) so the user can't access to database data directly.
But... If take the file and restore it on a different machine running sql server and it allows me to access any data in the database without any password. Is there a system to protect unautorized access to mdf file even after restore?