Reply to Re: Auditing user and security related activities in SQLServer

Your name:

Reply:


Posted by Erland Sommarskog on 07/22/05 00:21

byrocat (bdealhoy@sympatico.ca) writes:
> On the other database types, there is an audit capability in that you
> record such items as
> failed login attempts
> attemtped access to tables user is not authroized to
> changes to databse schema
> changes to permissions
> changes to logins (add, delete, lock, unlock, passwrod reset)

In SQL 2000 a Profiler trace is the only option, save for failed logins
which can be tracked by other means.

In SQL 2005 you can set up server and database triggers to audit the
last three events. SQL 2005 is currently in beta.

Attempt to access tables for which user does not have permission is
not something you can track well even in SQL 2005. In fact if a user
says "SELECT * FROM tbl_I_may_not_see" he gets as the same error message
as if it did not exist at all.


--
Erland Sommarskog, SQL Server MVP, esquel@sommarskog.se

Books Online for SQL Server SP3 at
http://www.microsoft.com/sql/techinfo/productdoc/2000/books.asp

[Back to original message]


Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация