Wrox Programmer Forums
SQL Server 2000 General discussion of Microsoft SQL Server -- for topics that don't fit in one of the more specific SQL Server forums. version 2000 only. There's a new forum for SQL Server 2005.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the SQL Server 2000 section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
Old March 1st, 2004, 05:50 PM
Registered User
Join Date: Feb 2004
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Default Security with SQL backups

Is it possible to accomplish all of the following:

1) have an IT person perform SQL backups and/or have them scheduled to run
2) that IT person cannot know the sa password
3) that same IT person cannot have read/write permission on the database
4) the database cannot be restored without entering a password

So far, I have thought of:

1) make the IT person a member of the db_backupoperator,db_denydatareader
and db_denydatawriter groups
2) you can add the PASSWORD option when running the BACKUP DATABASE command.
However, since the person performing the backup must enter the password,
then nothing is stopping him from copying the backup to another server over
which he has full control, restoring it and viewing the data.

I also realize that there are 3rd party applications that can do this.

Can someone either provide some details how this can be done with using SQL
Server exclusively or with the 3rd party tools?

Thanks for reading.

Similar Threads
Thread Thread Starter Forum Replies Last Post
Create Database Error when Attempting SQL Security wirerider ASP.NET 2.0 Professional 1 March 6th, 2007 07:19 PM
Backups in SQL Server 2000 vmaruv SQL Server 2000 7 September 7th, 2005 07:28 PM
SQL Server 2000 backups and Server 7 chubnut SQL Server 2000 2 August 7th, 2005 07:58 AM
Security: Preventing SQL Injection taliesin Classic ASP Professional 2 July 4th, 2003 02:43 AM
Schedule backups from hosting company kiwidude SQL Server 2000 2 June 9th, 2003 12:14 PM

Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.