Switching context with using EXECUTE AS ... not always switch it in fact as you wish.

In this demo i will try to explain why SET TRUSTWORTHY ON on some databases may make the sysadmin job unsafe. In previous posts i explained how db owner (or any developer) can try to implemet simplest luring attack against server sysadmin. According to BOL to avoid this problem sysadmin should switch to the context of the…

1

SQL Server 2005: building security model based on DDL triggers.

Last month I’m working with a client to create something like non-standard security model. He asked for the following features:   –          server–level management only for sa (server admin). –          database–level management for dbo (one or more dbo per database). Dbo is responsible for database’s user management, update / refresh structure etc.; but dbo should…

2

db_securityadmin is very powerfull and … dangerous.

Few days ago I worked for one client. He uses the following business model: –          dbo usually responsible for high level database design and maintenance; –          all database users organized in additional security groups for security purposes; –          dedicated person is responsible for user’s security maintenance, (s)he is able to assign user to explicit (one…

5