builtin\users SQL express access

I have just queried syslogins on a SQL express installation, and was quite alarmed to see builtin\users as a login. Is this default when you setup a new installation of SQL express? They aren't sysadmin but seem to have some degree of access. Is there any risk with this setup? Why would you grant BUILTIN\users access to a SQL DB?
Who is Participating?
DBAduck - Ben MillerConnect With a Mentor Principal ConsultantCommented:
Yes, SQLExpress was meant to be a client side engine.  The Default is also to restrict remote connections.  SQL Express is meant to be used and not seen, so the more restrictive it is, the harder it is to be invisible.

Many 3rd party applications use SQLExpress as their engine and some even install it with the installer of their app.  It is by default you see these things.
Jim P.Connect With a Mentor Commented:
BuiltIn\Users are the guest, ASP.NET, SYSTEM or IUSR_hostname type accounts that are local to the server. They are not like Authenticated Users,  let alone the Everyone group. So if someone can create and fire off an attack using one of these accounts, they are already inside your systems.

It doesn't hurt to restrict them further, but then you have to make sure that you can "break-in" if need be.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.