Dear everyone,
I would like to know if there will be an issue if I strip the PUBLIC
database role of ALL permissions it is assigned by default. I was
thinking of creating a new role, say EVERYONE, and moving all default
permissions that PUBLIC has to this new role.
Will this have any operational impact? Has anyone does this or know
of any publicly-available script that does this?
Thanks.
AramidWhat are you trying to achieve?
HTH
Jasper Smith (SQL Server MVP)
http://www.sqldbatips.com
I support PASS - the definitive, global
community for SQL Server professionals -
http://www.sqlpass.org
"Aramid" <aramid@.hotmail.com> wrote in message
news:66krg11l6rcm4e7lmsolt354r249mt356c@.
4ax.com...
> Dear everyone,
> I would like to know if there will be an issue if I strip the PUBLIC
> database role of ALL permissions it is assigned by default. I was
> thinking of creating a new role, say EVERYONE, and moving all default
> permissions that PUBLIC has to this new role.
> Will this have any operational impact? Has anyone does this or know
> of any publicly-available script that does this?
> Thanks.
> Aramid|||Hi Jasper,
I would like to add another layer of security to my system. I just
used SQL Baseline Security Analyzer and it's telling me that I got
stored procedures assigned to public, but all I have there are the
default permissions.
Aramid
On Thu, 25 Aug 2005 22:54:14 +0100, "Jasper Smith"
<jasper_smith9@.hotmail.com> wrote:
>What are you trying to achieve?|||Aramid
If I remember well, by default members of public role have no access to the
database.
"Aramid" <aramid@.hotmail.com> wrote in message
news:dopsg194fjsp63p9cougqb7hqsthrt3sst@.
4ax.com...
> Hi Jasper,
> I would like to add another layer of security to my system. I just
> used SQL Baseline Security Analyzer and it's telling me that I got
> stored procedures assigned to public, but all I have there are the
> default permissions.
> Aramid
> On Thu, 25 Aug 2005 22:54:14 +0100, "Jasper Smith"
> <jasper_smith9@.hotmail.com> wrote:
>
>|||Hi Uri,
The public role have no access to the user objects, by default. But
how about the access that it has on system objects? Are those
generally safe to leave on Public or should it be better for these to
be removed from Public and moved to a new role?
Thanks.
Aramid
On Sun, 28 Aug 2005 10:00:30 +0300, "Uri Dimant" <urid@.iscar.co.il>
wrote:
>Aramid
>If I remember well, by default members of public role have no access to th
e
>database.
>
>"Aramid" <aramid@.hotmail.com> wrote in message
> news:dopsg194fjsp63p9cougqb7hqsthrt3sst@.
4ax.com...
>
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment