February 20, 2008 at 10:54 am
I have heard that "best practice", when it comes to permissions on tables, is to not allow users access to tables. That at least you should only give them access through views, or some advocate only through stored procedures. I would like to know where this best practice is written down?
Kindest Regards, Rod Connect with me on LinkedIn.
February 20, 2008 at 11:51 am
From a security stand point, less is more. Here's a great white paper from MS that details all sorts of security best practices, not the least of which is masking off the tables from the users.
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore Roosevelt
Author of:
SQL Server Execution Plans
SQL Server Query Performance Tuning
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply