Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SELECT TRIGGER 2

Status
Not open for further replies.
kaiuweb

kaiuweb

Programmer
Oct 7, 2002
14
GB
Hi,
Does anyone know of a way I can monitor users doing a select on a table if they haven't connected via the application.

I have a system with sensitive information, the users will access this info through an unbound adp.
They have concerns that out IT Staff, who all have full rights as developers and dba's, could view this data.
So as a compromise I thought there must be a way that if userX does a select on a table and they haven't come in via the application, that sysadmin or userZ could get notified.
Or maybe a trigger could write to a file, or anything to record/alert when anyone does a select on a table they shouldn't be viewing.

Hope I haven't confused you.
Any ideas would be appreciated.


 
Sort by date Sort by votes
Unfortunaly no such thing as a select trigger.

You could run a trac continuously and set the parameters to the database in question and application names other than the authorized application.

Of course if they have access they could always shut down the trace.

Usually the solution to this problem is to have all the developers sign a non-disclosure agreement indicating the issues with sensitive data.

Trying to keep people who have admin rights out of databases is a losing proposition.
 
Upvote 0 Downvote
Personally what we do here is limit the developers rights to production data. They have full rights on our development server, but on production only dbas have system rights or development rights of any kind. On production, they have the same rights the users have because they need to see what is happening if there is a problem. So it isn't fair to take away their select rights if they need to support production. Further, non-dba personnnel do not have the password to sa on any server. Therefore they can't log in as sa (or worse, have their application log in as sa to avoid having to set rights). As flutplyr said, it is a good idea to have anyone with access to sensistive data to sign a non-disclosure agreement. But the bottom line is don't give system rights to anyone you don't trust. Very sensitive data can be encrypted by your user interface so that it is essentially meaningless until it is decrypted by the user interface. Many companies do this with passwords or credit card information or salary information to ensure the developers can't simply read it. But they can decrypt it if they take the trouble to do so (after all who wrote the encryption software?). It does make it more of a pain and more of a deliberate act to read sensistive information though.
 
Upvote 0 Downvote
Thanks fluteplr and SQLSister.
I guessed as much. I think I just needed confirmation.

Thanks to you both.

kaiuweb
UK
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

leifoet
  • Locked
  • Question
Error in Select query
Replies
14
Views
282
Andrzejek
Andrzejek
grnzbra
  • Locked
  • Question
SELECT TOP 1 of Each of a Group
Replies
5
Views
172
grnzbra
grnzbra
Auguy
  • Locked
  • Question
Using UDF In Select, Bad Idea? 2
Replies
3
Views
151
Auguy
Auguy
grnzbra
  • Locked
  • Question
Is "IF EXISTS()..." better than "IF (SELECT COUNT...) > 0"
Replies
4
Views
1K
gmmastros
gmmastros
TheBugSlayer
  • Locked
  • Question
Transaction with SELECT and UPDATE with XLOCK causing deadlocks 2
Replies
10
Views
345
gmmastros
gmmastros

Part and Inventory Search

Sponsor

Back
Top