Tag Archives: database permissions

  1. EXECUTE AS USER vs EXECUTE AS LOGIN

    Leave a comment

    July 26, 2022 by Kenneth Fisher

    I use impersonation a lot. It’s a really easy way to check if someone has the permissions they are supposed …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , , , ,

  2. The public role

    2

    May 23, 2018 by Kenneth Fisher

    A common misunderstanding is that the CONNECT permission lets you do more than just connect to a database. It doesn’t. …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  3. Who should own the database?

    7

    January 15, 2018 by Kenneth Fisher

    TL;DR; SA, or if you are really paranoid then you can create a disabled SQL login with minimal permissions and …
    Continue reading

    Category: Impersonation, Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  4. Simple Security Report

    2

    May 1, 2017 by Kenneth Fisher

    Quite a while ago I created a couple of little security scripts to help me out with permissions research. Over …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  5. sp_SrvPermissions & sp_DBPermissions V6.0 Finally!

    7

    March 27, 2017 by Kenneth Fisher

    It’s been almost 3 years since I updated these SPs! I can’t believe so much time has gone by! Well, …
    Continue reading

    Category: Dynamic SQL, Microsoft SQL Server, Security, SQLServerPedia Syndication, System Functions and Stored Procedures, T-SQL | Tags: , , , , , ,

  6. Write-Only permissions

    3

    August 11, 2016 by Kenneth Fisher

    Yep, that’s right, you heard me. Write-Only not Read-Only. I was presenting SQL Server Security Basics at NTSSUG the other …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , ,

  7. The CONNECT permission

    11

    January 27, 2016 by Kenneth Fisher

    The CONNECT permission exists at the instance and database levels. Note: as of SQL 2012 it is CONNECT SQL at …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  8. Administrative Logins and Users

    3

    November 2, 2015 by Kenneth Fisher

    If you’ve ever worked through an audit you have probably gotten a request that looks a lot like this: Please …
    Continue reading

    Category: Auditing, Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  9. Zombie AD Groups

    4

    September 21, 2015 by Kenneth Fisher

    I spent something like 2 hours today trying to figure out how a particular user had access to one of …
    Continue reading

    Category: Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , ,

  10. Permissions Posters

    3

    July 27, 2015 by Kenneth Fisher

    I’ve been doing a lot of research recently for my permissions session and for a project at work. During said …
    Continue reading

    Category: Documentation, Microsoft SQL Server, Security, SQLServerPedia Syndication | Tags: , , , , ,

« Older Entries

Follow me via RSS

RSS Feed RSS - Posts

RSS Feed RSS - Comments

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 3,753 other subscribers

Follow me on Twitter

@sqlstudent144

Archives

Categories

Meta

ToadWorld Pro of the Month November 2013