Aaron,

If no one has access to the physical file (network/NT secuirty), then only the people who are assigned access to the database will be able to access it. That means, anyone with the SA password.

What is this 'back door' you talk about?

If you want to go one step further, look at application roles. This is what we use so that only the connection the application uses has full access to the database, if the user connects externally they only have select rights to one config file.

BOb


>Hi all,
>
>Anyone know of a way to totally protect a database against any form of user access (except your own application). This would have to include someone trying to move the database onto another SQL Server installation and accessing the data through the back door or using a report writer to access the data.
>
>Any help greatly appreciated.
>
>Regards,
>
>Aaron