In the course of trying to track down a problem running the application i'm involved in developing at the moment, I stumbled across the following article describing what SQL Server does with file permissions when it attaches to a database file.
The article states that for security reasons it changes the file permissions so that if a file has been placed in an insecure folder, then it attempts to protect it from someone without the privileges from moving or deleting it.
It seems to me to be a little mis-guided. Firstly, I would assume that it's the responsibility of the DBA, to place all database files in an appropriate place with appropriate permissions to the various users that require access. The secure by default paradigm is all well & good, but there is no way to turn this behavior off. Secondly, it doesn't really achieve anything. If a DBA has been dumb enough to place a vitally important database file in a folder that anyone has full control over, then if SQL Server is not attached, the user can easily cut & paste the folder wherever they want which will have the same effect as moving the original file.
Maybe i'm not seeing something here, I can't really see the need for this.
Subscribe to:
Post Comments (Atom)
Posts
Uncover the 05 best CRM software in Dubai you must check out in 2024 to optimize your customer management processes and stay ahead in the competitive market.
ReplyDeleteExperience unparalleled luxury with Luxury Apartment Interior Design Services in Dubai. Their custom designs seamlessly blend aesthetics and functionality to create a truly luxurious living environment. Discover how they can transform your apartment into a sophisticated haven.
ReplyDeleteConsistently leading the market, the best construction company in dubai combines skilled craftsmanship with innovative solutions, making it the preferred choice for high-profile projects.
ReplyDeleteNeed car repair air conditioning Find local specialists who can diagnose and fix your AC issues quickly.
ReplyDelete