Re: Newbie: I don't understand user permissions for table access

From: Larry Woods (larry_at_NOSPAMlwoods.com)
Date: 07/28/04 

Date: Wed, 28 Jul 2004 07:43:53 -0700

My database is remote to my workstation. I am using EM on the workstation.
The database has a userid/password (not 'sa') but the userid has "public"
and "db_owner" roles. Does the "db_owner" have complete access to all
tables/fields WITHOUT specifying anything in the permissions dialogs?

My "public" role only has "SELECT" and "EXEC" permissions.

Thanks, again.

Larry Woods

And,
"Keith Kratochvil" <sqlguy.back2u@comcast.net> wrote in message
news:%23PTfc5KdEHA.3728@TK2MSFTNGP09.phx.gbl...
> wrong
> table permissions are important. They are required in order to
> access/update/delete data.
>
> HOW are you connecting to SQL Server?
> NT Authentication?
> SQL Server Authentication?
>
> If SQL Server auth, what account are you using? sa? If so, that is the
> "GOD" account. You have full permissions to do anything and everything.
>
> If you are using NT auth, what rights does your NT account have? Is it
> assigned server or database roles that allow the activities that you are
> performing?
>
> Finally, what rights/permissions have been granted to the PUBLIC role?
> Often (unfortunately) companies simply grant all rights to the public
> role...and then evey account (SQL and NT) inherit the rights assigned to
the
> public role. For obvious reasons this is a bad security model.
>
> SQL Server has a strong security model and it works well when it is setup
by
> someone who knows what they are doing. In the wrong hands....
>
> --
> Keith
>
>
> "Larry Woods" <larry@NOSPAMlwoods.com> wrote in message
> news:eM31J1KdEHA.3864@TK2MSFTNGP10.phx.gbl...
> > I have a SQL Server database that has database userid/password
protection.
> > When I open the database through EM I can add/delete/modify any table,
but
> > when I look at the permissions for any of the tables there are NO
options
> > set for any user of the database! I don't understand the purpose of the
> > permissions, I guess, since they don't have to be set in order to get
> access
> > to the tables.
> >
> > TIA,
> >
> > Larry Woods
> >
> >
>

Relevant Pages

  • ADP, Application Role, and objects
    ... The above link is to an atricle on how to implement SQL Server Application ... After you connect with your ADP, fire a bit of code to set the ... third party tools to view the data on the same database. ... Scenario 1 - If I explicitly grant permissions on that object to the user ...
    (microsoft.public.access.adp.sqlserver)
  • Re: Execute Persmission denied on object sp_OACreate
    ... > SQL Server is creating a job behind the scenes. ... > permissions. ... > SA account password and gaining access to the database. ... >>> How can get a user permissions to execute these stored procedures ...
    (microsoft.public.sqlserver.security)
  • Re: Newbie: I dont understand user permissions for table access
    ... > My database is remote to my workstation. ... > tables/fields WITHOUT specifying anything in the permissions dialogs? ... >> HOW are you connecting to SQL Server? ... what rights/permissions have been granted to the PUBLIC role? ...
    (microsoft.public.sqlserver.server)
  • Re: Execute Persmission denied on object sp_OACreate
    ... SQL Server is creating a job behind the scenes. ... SA account password and gaining access to the database. ... > SQL Server doesn't check permissions on indirectly referenced objects as ... > the proxy account security context for non-sysadmin users from Enterprise ...
    (microsoft.public.sqlserver.security)
  • Re: Security question ..
    ... What I want to prevent is any access to the database accept through our ... application unless you have elevated permissions. ... Authentication, if he is smart enough to create an NT Auth ODBC connection ... passes through to the database or to use SQL Server authentication. ...
    (microsoft.public.sqlserver.server)