[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Adding signature to trigger that executes a procedure on another DB

Posted on 2012-09-07
8
Medium Priority
?
206 Views
Last Modified: 2013-02-23
Hi,
There was a security issue with trigger executing a procedure on another DB. We found a solution that was based on module signing (adding signature from certificate etc.)
http://www.experts-exchange.com/Microsoft/Development/MS-SQL-Server/Q_27844430.html
I can't find any clear guide to sign procedure / trigger and to make that work.

Can someone please help me?
0
Comment
Question by:lynq
  • 4
6 Comments
 
LVL 70

Expert Comment

by:Scott Pletcher
ID: 38377311
Does the trigger actually need to wait for the procedure to execute?

Normally you don't want anything not absolutely required holding up a trigger, least of all something requiring cross-server communication.

Can you instead use a Service Broker message to alert the other server that code needs to be run on it?
0
 

Author Comment

by:lynq
ID: 38382262
I've been talking about cross-DB not cross-server communication.
Should I still use Service Broker?

<<Does the trigger actually need to wait for the procedure to execute?
Do you mean using WAITFOR inside trigger?
0
 

Author Comment

by:lynq
ID: 38397967
Will anyone help me?
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 18

Expert Comment

by:lludden
ID: 38420657
If you have two databases on the same server, you should be able to grant any procedure in any of the db's permission to execute from anywhere you need.  Are you getting an error or what.  Post some code and an exact message from the server.
0
 

Accepted Solution

by:
lynq earned 0 total points
ID: 38420908
As I've said in first post the general description of my problem (including error and my code) can be found here
http://www.experts-exchange.com/Microsoft/Development/MS-SQL-Server/Q_27844430.html
We've found that this problem can be solved by using code signing.
What I want to get from experts is clear algorithm how to use code signing in this particular case. Or any other way to make my trigger work.
0
 

Author Closing Comment

by:lynq
ID: 38920821
Nobody helped
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this blog post, we’ll look at how using thread_statistics can cause high memory usage.
What we learned in Webroot's webinar on multi-vector protection.
Viewers will learn how to use the SELECT statement in SQL to return specific rows and columns, with various degrees of sorting and limits in place.
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question