How would I know. Would that be apparent in the web config.

Have you got a link to that sort of problem ?

Thanks




>Exposing the web service directly is a HUGE security hole.
>
>How to do it depends on how they've implemented the web service. Is it JSON? SOAP? etc?
>
>>Hi craig
>>
>>I'm not doing anything :-)
>>
>>I'm doing some work at a site where they have web site built by a third party.
>>
>>The web site is using a web service to access and update a SQL Server database (at the moment using the sa account)
>>
>>They want to be able to track changes made via the web service.
>>
>>So I suppose two questions.
>>
>>Why do you say what you say and how is that relevant to this.
>>
>>and
>>
>>how do they set that up.
>>
>>Thanks