Post reply

Showplan

  • February 17, 2018 at 7:23 am

    #344055

    Started a new role, have limited (read) rights to the server, I have asked for showplan rights but have been refused, my question is, does showplan rights give me something above and beyond showplan which would justify the refusal? Apologies if this is the wrong form for this question.

    ...

  • February 18, 2018 at 3:19 pm

    #1980203

    They don't have a "dev" server?

    --Jeff Moden

    RBAR is pronounced "ree-bar" and is a "Modenism" for Row-By-Agonizing-Row.
    First step towards the paradigm shift of writing Set Based code:
    ________Stop thinking about what you want to do to a ROW... think, instead, of what you want to do to a COLUMN.

    Change is inevitable... Change for the better is not.

    Helpful Links:
    How to post code problems
    How to Post Performance Problems
    Create a Tally Function (fnTally)

  • February 18, 2018 at 10:42 pm

    #1980219

    Nope, not even a suggestion of one!

    ...

  • February 19, 2018 at 3:24 am

    #1980237

    it depends on the nature of the data.
    If that data is to sensitive ( names / Social numbers / ... ) they could refuse the auth.
    IMHO in all other cases they should at least provide access to the SQLPlans, even if not directly on the SQLInstance itself !  ( scheduled/ad-hoc export sqlplans : cfr https://www.scarydba.com/2017/02/13/export-plans-cache-sqlplan-file/ )

    Johan

    Learn to play, play to learn !

    Dont drive faster than your guardian angel can fly ...
    but keeping both feet on the ground wont get you anywhere :w00t:

    - How to post Performance Problems
    - How to post data/code to get the best help[/url]

    - How to prevent a sore throat after hours of presenting ppt

    press F1 for solution, press shift+F1 for urgent solution 😀

    Need a bit of Powershell? How about this

    Who am I ? Sometimes this is me but most of the time this is me

  • February 19, 2018 at 11:42 am

    #1980310

    ALZDBA - Monday, February 19, 2018 3:24 AM

    it depends on the nature of the data.
    If that data is to sensitive ( names / Social numbers / ... ) they could refuse the auth.
    IMHO in all other cases they should at least provide access to the SQLPlans, even if not directly on the SQLInstance itself !  ( scheduled/ad-hoc export sqlplans : cfr https://www.scarydba.com/2017/02/13/export-plans-cache-sqlplan-file/ )

    The data is non sensitive but I was not aware that showplan output could include data, do you have a link that explains what can be seen explicitly?

    ...

  • February 19, 2018 at 12:04 pm

    #1980319

    HappyGeek - Monday, February 19, 2018 11:42 AM

    ALZDBA - Monday, February 19, 2018 3:24 AM

    it depends on the nature of the data.
    If that data is to sensitive ( names / Social numbers / ... ) they could refuse the auth.
    IMHO in all other cases they should at least provide access to the SQLPlans, even if not directly on the SQLInstance itself !  ( scheduled/ad-hoc export sqlplans : cfr https://www.scarydba.com/2017/02/13/export-plans-cache-sqlplan-file/ )

    The data is non sensitive but I was not aware that showplan output could include data, do you have a link that explains what can be seen explicitly?

    You can view the queries - that's what MS docs note in the Permissions for Showplan and the security implications. It's in the Important note at the beginning:
    Permissions Required to Run SQL Server Profiler

    Sue

  • February 20, 2018 at 12:30 am

    #1980385

    HappyGeek - Monday, February 19, 2018 11:42 AM

    ALZDBA - Monday, February 19, 2018 3:24 AM

    it depends on the nature of the data.
    If that data is to sensitive ( names / Social numbers / ... ) they could refuse the auth.
    IMHO in all other cases they should at least provide access to the SQLPlans, even if not directly on the SQLInstance itself !  ( scheduled/ad-hoc export sqlplans : cfr https://www.scarydba.com/2017/02/13/export-plans-cache-sqlplan-file/ )

    The data is non sensitive but I was not aware that showplan output could include data, do you have a link that explains what can be seen explicitly?

    It does not contain the data if you mean like result set.
    However, it does contain bind parameters ( and hose could actually reveal "sensitve" data, object names, .. )

    Johan

    Learn to play, play to learn !

    Dont drive faster than your guardian angel can fly ...
    but keeping both feet on the ground wont get you anywhere :w00t:

    - How to post Performance Problems
    - How to post data/code to get the best help[/url]

    - How to prevent a sore throat after hours of presenting ppt

    press F1 for solution, press shift+F1 for urgent solution 😀

    Need a bit of Powershell? How about this

    Who am I ? Sometimes this is me but most of the time this is me

Viewing 7 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic. Login to reply