SQL Server数据库安全性 [英] SQL server database security

问题描述

我的SQL服务器附带了一些数据库。服务器实例受密码保护，但我发现任何正文都可以复制包含这些数据库的文件夹，并在任何地方打开。

请注意：



1）如何防止它们被附加后被复制（如果需要复制，应该分开）

2）DB级别是否有任何密码保护（如Sql Server Compact DB）？



非常感谢。

Hi,
I have a few databases attached to my SQL server. The server instance is password protected but I have discovered that any body can copy the folder that contain those DBs and open where ever.
Please advise:

1) How can I prevent them from being copied once they are attached (should be detached if copying is required)
2) Is there any password protection available at DB level (like Sql Server Compact DBs)?

Thanks a lot.

推荐答案

为什么首先让用户可以使用.mdf和.ldf文件的文件夹？

这些文件应该只允许访问数据库引擎，管理员和备份操作员（最常见的是SQL代理帐户）。

其他人都没有这些文件。

您必须在NTFS权限级别管理它;并丢弃允许用户访问db-files文件夹的共享。

Why making the folder with .mdf and .ldf files available to users in the first place, anyway?
These files should only be allowed accessed to the database engine, the administators, and the backup operators (most often the SQL Agent account).
Everyone else doesn't have anyhting to do with these files.
You have to manage that at the NTFS permissions level; and throw away the shares that allow users to reach the db-files folder.

这篇关于SQL Server数据库安全性的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！