July 30, 2010
Login
|
Home
FAQs
SQL Server FAQ
SQL Injection FAQ
SQL Security Checklist
SQL Server-Related Products
SQL Server/MSDE-Based Applications
SQL Server Version Database
Tools
Lockdown Script
Free Tools
Free Analysis
Group Policy Templates
Commercial Tools
Community
Discussions
Links
About
Search
SQL Security Forums
Note: SQLSecurity.com does not allow nor require registration due to privacy concerns for users. SQLSecurity.com is open and anonymous for all. Please report any abuse or profanity.
Unanswered
Active Topics
Forums
Search
UserName:
Subject:
SQL Server and ODBC
Body:
[quote]Posted By n/a on 10/16/2001 9:49 AM Normally I would advise you to look into application roles since that is what they were primarily designed to do. However, in the case where you are not the developer of the application (MS Project) you will need to work within the constraints of that app. I will state for the record that I am not familiar with MS Projects con figuration settings but assuming it uses and Integrated security model I would advise you to look at these possible solutions: 1. Place the SQL Server on a separate subnet from the users and only allow direct connectivity to the IIS server which is serving up the MS Project content. 2. Install IPSec on the SQL Server and IIS server and configure IPSec rules to block connections from unauthorized machines. If another option comes to mind I will post it as well. Good luck! [/quote]
Show Replies:
ActiveForums 3.6
Copyright 1999 by Chip Andrews
|
Privacy Statement
|
Terms Of Use