To drill down further into what the permissions are can you run these queriesselect objectname(id),username(uid). You are looking at the permissions that have been granted or denied on the stored procedures sptables and spcolumns. from sys.databasepermissions where majorid = objectid ( 'sys.spcolumns' ). from sys.databasepermissions where majorid = objectid ( 'sys.sptables' )select username ( granteeprincipalid ).
These queries return the permissions on the lect username ( granteeprincipalid ). You can do this byuse mastergoCREATE USER UPS FOR LOGIN UPSgoNow deny the execute permissions on this user UPS in the master e mastergoDENY EXECUTE ON sptables to UPSDENY EXECUTE on spcolumns to UPSgoIt shouldn't matter what permissions are granted to public since DENY to a specific user should override the grant on the public role.Also, can you run the below queries in the master database and let me know the results. I hope I understood your scenario correctly.If the above is correct, then here's what you should do.Ĭreate a user called UPS mapped to the login UPS in the master database. What you are trying to do is to ensure that when the login UPS connects to any database, it cannot execute the procedures sptables and spcolumns. And this login is mapped to a user called ups in each user database. I am also running it over a VPN.The 'create user xyz in master' syntax doesn't seem to work in SQL Server 2000.I have created a role for the UPS computer user (ups) and restricted it to SELECT only from the one VIEW in needs to and INSERT into only the one table it needs to however it can still run the sptables and spcolumns commands.Could someone please help me block its access to these two stored procedures?Thanks!Robert. I thought I had blocked access to all normal tables in the DB the WorldShip is querying, but somehow it is still able to run sptables and spcolumns and it takes forever to do so. Hi guys,I have the same problem with WorldShip 8.0 but I'm using SQL Server 2000 and it just started happening last week.I was wondering.
#SP COLUMN 4.81 CRACK TRIAL#
You could try to determine the required subset of objects for which access should be granted to the application by trial and error.ThanksLaurentiu. from sys.databasepermissions where majorid = objectid ( 'INFORMATIONSCHEMA.CHECKCONSTRAINTS' )The deny made in master will work in any other database.What objects should be accessible depends on what the UPS WorldShip application needs to access. You can see the permissions granted on it by querying the databasepermissions catalog in the master database:select. You can query it in other databases, but in fact it resides in the resource database and permissions on it have to be granted within the master database. Let's say that the login is 'alice', then you have to do something like this:use mastercreate user alicedeny select on INFORMATIONSCHEMA.CHECKCONSTRAINTS to aliceThis needs to happen in the master database because CHECKCONSTRAINTS is a special catalog. Create a user for that login in the master database.
0 kommentar(er)
