Solved

datareader can see code

Posted on 2011-09-15
6
306 Views
Last Modified: 2012-05-12
the new user has only datareader but is able to read the procs, udf  etc

datareader means they can read any code on the db? (along with selects on any tables/views)
0
Comment
Question by:25112
  • 3
  • 2
6 Comments
 
LVL 18

Accepted Solution

by:
x-men earned 250 total points
ID: 36544240
you can give permissions to especific tables and views
0
 
LVL 18

Expert Comment

by:x-men
ID: 36544243
...and remove
0
 
LVL 18

Expert Comment

by:x-men
ID: 36544244
...or deny
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 50

Assisted Solution

by:Lowfatspread
Lowfatspread earned 250 total points
ID: 36544282
i didn't think datareader included definition ... by default but i'd have to check...

deny defintion if you don't want them to be able to see code etc

or you certain they aren't inheriting some other roles etc..? (e.g. admin)
0
 
LVL 5

Author Comment

by:25112
ID: 36544571
deny worked good.
0
 
LVL 50

Expert Comment

by:Lowfatspread
ID: 36545329
unlrss the code is encrypted , they can probablu still see the definition of the stored procedures by looking at the dara in either the information_achema tables or the sysrem tables ... if you have still left them with datareader.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

In this article I will describe the Copy Database Wizard method as one possible migration process and I will add the extra tasks needed for an upgrade when and where is applied so it will cover all.
Ever needed a SQL 2008 Database replicated/mirrored/log shipped on another server but you can't take the downtime inflicted by initial snapshot or disconnect while T-logs are restored or mirror applied? You can use SQL Server Initialize from Backup…
Via a live example, show how to extract information from SQL Server on Database, Connection and Server properties
Via a live example, show how to set up a backup for SQL Server using a Maintenance Plan and how to schedule the job into SQL Server Agent.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now