SQL User ID and Password In Application

Level Extreme platform

Subscription

Corporate profile

Products & Services

Support

Legal

Français

SQL User ID and Password In Application

Message

From

24/12/2010 08:53:37

Robert Houseknecht
Zephran Technologies
Hamburg, New York, United States

23/12/2010 14:20:35

Timothy Bryan
Sharpline Consultants
Conroe, Texas, United States

General information

Forum:

Microsoft SQL Server

Category:

Security

Title:

Re: SQL User ID and Password In Application

Environment versions

SQL Server:

SQL Server 2005

Application:

Desktop

Miscellaneous

Thread ID:

01493702

Message ID:

01493785

Views:

Tim,

I could not agree with you more... They only tell us the problem, it is up to us to come up with the solution...
In their world there is no such thing as "Trusting" the developer..

>Is the data access being done all through stored procedures? If so would they let you have a userid and password that only has
> access to the stored procedure execution needed for the application?
No.. We cannot have the user id/password for anything on the production server.

>
>
>I am not a SQL server expert but isn't that like saying I expect you to login to something but you are not allowed to have a userid and password? What do they expect you to do with that?
>
>Is the data access being done all through stored procedures? If so would they let you have a userid and password that only has access to the stored procedure execution needed for the application?
>Tim

Map

View

Click here to load this message in the networking platform