datareader can see code

the new user has only datareader but is able to read the procs, udf  etc

datareader means they can read any code on the db? (along with selects on any tables/views)
LVL 5
25112Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
x-menConnect With a Mentor IT super heroCommented:
you can give permissions to especific tables and views
0
 
x-menIT super heroCommented:
...and remove
0
 
x-menIT super heroCommented:
...or deny
0
Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
LowfatspreadConnect With a Mentor Commented:
i didn't think datareader included definition ... by default but i'd have to check...

deny defintion if you don't want them to be able to see code etc

or you certain they aren't inheriting some other roles etc..? (e.g. admin)
0
 
25112Author Commented:
deny worked good.
0
 
LowfatspreadCommented:
unlrss the code is encrypted , they can probablu still see the definition of the stored procedures by looking at the dara in either the information_achema tables or the sysrem tables ... if you have still left them with datareader.
0
All Courses

From novice to tech pro — start learning today.