sql server - set trustworthy on - is it a bad practice? if so any alternatives? -

-

I have a group of users "readers" who are the only debaters on "Myadabs". I have a stored procedure. 1: 2 - Update data within "mydatabase",

2 - Reduce the tables within the database "mydatabase" - and this is done by dynamics Using SQL because we do not know the names of tables which have to be shortened

3 - Update in the tables in "mydatabse2" Cord

4 - Enter the record inside tables in "Mydatabse3"

The way I have solved this problem is:

1 - I changed the DB owner of all these 3 databases

2 - I changed the stored procedure "sep" to execute as oven

3 - I have all these 3 databases I am setting it as trustworthy.

All is well.

My concern is, and therefore the question is here:

Is there any serious security difference which is open using on trustworth?

I could not find anything serious, so I'm leaving it.

As long as no one can remind me of something, I can not remember.

This TRUSTWORTHY option, when set to a specific database , Then allows code from that database to be accessed outside of external objects (such as other databases, for example).

Only one place where you have any code that needs external access mydatabase , you can safely close this option for the remaining two options. .

The option is not particularly dangerous; After all, before it first appeared in SQL Server 2005, everything went straight, as long as you have enough permissions. And from that age I can not remember any special light on the subject in question. Just make sure that you keep the volume of db_owner members very low, which is usually enough.


Comments

Post a Comment

Popular posts from this blog

winforms - C# Form - Property Change -

-
I have a form that has a property named car A class with many properties. The Properties is being displayed on the current car on the basis of some user actions that are being displayed. So I have to know whether the property has been allocated or set to zero. I'm aware of INotifyPropertyChanged , but in my case I'm not sure that since this change I have changed my car properties car do not want to monitor the property. Any idea how to accomplish this? In advance thank you If you have created a true asset in your class then You should be a great and setter, you can add the code directly to the form property in order to take action on the basis of "form": Public partial category Form 1: form {public form 1 () {InitializeComponent (); } // define car square public class car {public string name = string. Empty; } // private car to keep the value of the current car private variable _car = null; // Property of public form which you can ru...
Read more

javascript - amcharts makechart not working -

-
I am trying to create an amiratars serial chart on my Durandal single page application. This chart was working fine on Chrome browser but it is not working on IE. Can you please help me in this regard. Error while using Amcharts. The Macchart () method does not support the object in this object in IE.
Read more

java - Algorithm negotiation fail SSH in Jenkins -

-
I am trying to do SSH on the local server from Jenkins, but the following error has been thrown: [SSH] Exception: Algorithm negotiation fail com.jcraft.jsch.JSchException: algorithm talk com.jcraft.jsch.Session.receive_kexinit (Session.javaatar20) at com.jcraft.jsch.Session.connect (Sesson at com.jcraft.jsch.Session.connect (Session.java:150) at org.jvnet.hudson.plugins.SSHSite.createSession (SSHSite.java:141) on failed failed org.jvnet.hudson.plugins. java: 286) .SSHS on org.jvnet.hudson.plugins.SSHBuildWrapper.executePreBuildScript (SSHBuildWrapper.java:75) on Org.jvnet.hudson.plugins.SSHBuildWrapper.setUp (SSHBuildWrapper.java59) ite.executeCommand (SSHSite.java151) on hudson.model.Build $ BuildExecution.doRun hudson.model.AbstractBuild $ AbstractBuildExecution.run (AbstractBuild.java:533) to (Build.java:154) hudson.model.Run.execute ( Run.java:1754) in ended .model.FreeStyleBuild.run (FreeStyl hudson.model.ResourceController.execute (ResourceController.java:89) on hudson.mod...
Read more