General discussion

Locked

SQL Security

By mvanderspuy ·
I need to deny the user access to my SP. Only my VB6 Application must be able to use them. Is there any way to do this ?

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

SQL Security

by TimTheToolMan In reply to SQL Security

Hi,

Setup a user in SQLServer that has appropriate access to your DB (your stored procedures for one...) Dissallow all other access.

Then, the best way would be to have VB server components on the SQLServer server and allow access to the DB through them only.

Alternatively (and this is easier but not as secure and much less desirable) you can simply code the username and password you use to access the DB (presumably via your ODBC connection) into your compiled App.

You could also maintain an encrypted password in the registry or any number of alternatives you come up with...

This is less than ideal, though. Change the password on SQLServer and your App breaks!

Cheers,
Tim.

Collapse -

SQL Security

by mvanderspuy In reply to SQL Security

The question was auto-closed by TechRepublic

Collapse -

SQL Security

by Glen_McLeod In reply to SQL Security

Set up an application role (SQL Server 7.0 & 2K) with the appropriate permissions on you SP, deny eveyone else, then have the application execute "sp_setapprole" with the role name and password.

You might want to read up on this, because when setting an application role, all other permissions are ignored, including individual ones.

Glen

Collapse -

SQL Security

by mvanderspuy In reply to SQL Security

The question was auto-closed by TechRepublic

Collapse -

SQL Security

by mvanderspuy In reply to SQL Security

This question was auto closed due to inactivity

Back to Web Development Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums