Solved

datareader can see code

Posted on 2011-09-15
6
363 Views
Last Modified: 2012-05-12
the new user has only datareader but is able to read the procs, udf  etc

datareader means they can read any code on the db? (along with selects on any tables/views)
0
Comment
Question by:25112
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 18

Accepted Solution

by:
x-men earned 250 total points
ID: 36544240
you can give permissions to especific tables and views
0
 
LVL 18

Expert Comment

by:x-men
ID: 36544243
...and remove
0
 
LVL 18

Expert Comment

by:x-men
ID: 36544244
...or deny
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 50

Assisted Solution

by:Lowfatspread
Lowfatspread earned 250 total points
ID: 36544282
i didn't think datareader included definition ... by default but i'd have to check...

deny defintion if you don't want them to be able to see code etc

or you certain they aren't inheriting some other roles etc..? (e.g. admin)
0
 
LVL 5

Author Comment

by:25112
ID: 36544571
deny worked good.
0
 
LVL 50

Expert Comment

by:Lowfatspread
ID: 36545329
unlrss the code is encrypted , they can probablu still see the definition of the stored procedures by looking at the dara in either the information_achema tables or the sysrem tables ... if you have still left them with datareader.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Delta outage: 650 cancelled flights, more than 1200 delayed flights, thousands of frustrated customers, tens of millions of dollars in damages – plus untold reputational damage to one of the world’s most trusted airlines. All due to a catastroph…
A Stored Procedure in Microsoft SQL Server is a powerful feature that it can be used to execute the Data Manipulation Language (DML) or Data Definition Language (DDL). Depending on business requirements, a single Stored Procedure can return differe…
This video shows, step by step, how to configure Oracle Heterogeneous Services via the Generic Gateway Agent in order to make a connection from an Oracle session and access a remote SQL Server database table.
Using examples as well as descriptions, and references to Books Online, show the different Recovery Models available in SQL Server and explain, as well as show how full, differential and transaction log backups are performed

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question