Any user that is a member of the db_owner database role is god in the database. They can do anything and are not affected by permissions. If someone was to hijack the user or figure out a way to establish a SQL Injection attack, your database would be wide open.
-Mike
>Mike
>
>Hope this isn't a silly question but why is that? Could you please explain that one a little more?
>
>Thanks!
>
>Nicky