Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

sp_OA

Status
Not open for further replies.
qberta01

qberta01

Programmer
Nov 14, 2005
113
0
0
Hello, I need to run a DTS package through a stored proc that gets executed through a web application. The web user permissions must not be sysadmin. So I used the sp_OA procs to circumvent this problem. However, I am concerned about it being a security risk. Are the sp_OA procs a security risk even if they are not called directly form the web app?

I am using SQL 2000

Thx,

Q.
 
Sort by date Sort by votes
What are you doing in the DTS package? Is there any chance that you can convert the DTS package to just using T-SQL?

What exactly is the DTS job doing that you can't do in T-SQL?

I think I have another way around this, but let me know what your DTS job does.

All of the other ways that I can think of doing this would be security risk also.

Only members of the sysadmin fixed server role can execute the create of sp_OA. (from SQL Server Books Online)

Live to Throw
Throw to Live
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

snakehips2000
  • Locked
  • Question
sp_OAMethod - ExecuteWithResults
Replies
1
Views
57
gmmastros
gmmastros
Malcav
  • Locked
  • Question
SP_OA dll fun
Replies
3
Views
7
Malcav
Malcav
foxbox
  • Locked
  • Question
sp_OAMethod send
Replies
0
Views
29
foxbox
foxbox
b00gieman
  • Locked
  • Question
Alternative to sp_OACreate?
Replies
3
Views
38
jrbarnett
jrbarnett
millerk
  • Locked
  • Question
sp_oa procs and .Net in SQL 2005
Replies
1
Views
6
NoCoolHandle
NoCoolHandle

Part and Inventory Search

Sponsor

Back
Top