Re: ms sql server 2000 security too weak ?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: RW (goldbase_at_centrin.net.id)
Date: 04/12/04

• Next message: Steve Z: "Re: Transaction Log acts like Energizer Bunny"
• Previous message: RW: "Re: ms sql server 2000 too weak ?"
• In reply to: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Next in thread: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Reply: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Messages sorted by: [ date ] [ thread ]

---

Date: Mon, 12 Apr 2004 22:36:57 +0700

1. using NTFS security still allow to get in, and duplicate the
database, this is not why I mean, but they can copy and open it in
another server without any protection.

2. using data encryption of course will slow down the performance while
we process large amount of data

I am not blaming MS, actually the sql server is quite a good and easy to
maintain database, only we are so curious, why other user data like
excel spreadsheet, word, access can have their own password, and
specially the most important data container (sql server) open like a
mall and welcome in, u just login in as 'sa' and u get everything.

Why not MS add an additional login password as an option, may be that's
much better than let it open.

>
> You have a choice. Have MSDE run, on a reserved account
> - NTFS security
> - Data Encryption
> - Also, you can store data on a raw partition, that cannot be copied so
> easily.
>
> b.t.w. there is nearly no protection against harddisk access by a
> technician. You can't blame MS for that. But data encryption by the
> application that uses MSDE is a solution...

---

• Next message: Steve Z: "Re: Transaction Log acts like Energizer Bunny"
• Previous message: RW: "Re: ms sql server 2000 too weak ?"
• In reply to: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Next in thread: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Reply: Egbert Nierop \(MVP for IIS\): "Re: ms sql server 2000 security too weak ?"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: ms sql server 2000 security too weak ? ... using NTFS security still allow to get in, ... using data encryption of course will slow down the performance while ... actually the sql server is quite a good and easy to ... maintain database, only we are so curious, why other user data like ... (microsoft.public.sqlserver.security) Re: SQL Server 2005 supports encryption capabilities within the datab ... Jasper Smith (SQL Server MVP) ... community for SQL Server professionals - ... > documentation on data encryption within a SQL Server 2005 database? ... (microsoft.public.sqlserver.security) Re: Data encryption ... YOu can always employ third party data encryption for w/in ... and products like SQL Litespeed have an option you can buy ... >database or stop the SQL service and take a copy of the ... >Jasper Smith (SQL Server MVP) ... (microsoft.public.sqlserver.security) Idiomatic Expressions to Operating System Architecture: Transforming Rigids ... <Subject: Re: Idiomatic Expressions to Operating ... <endpoint during a single session * DATABASE + by ... <statements is a new feature of SQL Server 2005. ... (sci.math) Re: MS Access DAO -> ADO.NET Migration ... William Vaughn ... Microsoft MVP ... Hitchhiker's Guide to Visual Studio and SQL Server ... My migration app works building a SSCE database file with imported data ... (microsoft.public.dotnet.framework.adonet)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > SQL-Server  > microsoft.public.sqlserver.server  > 2004-04