Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SQL Server 2005 security question 3

Status
Not open for further replies.
takaoki

takaoki

Programmer
Aug 28, 2008
39
0
0
ZA
How can I "lock down" a database? That is, the database has very sensitive information. But anyone who is an admin on the server can potentially add a login and map that login to the database.

How do I get around this??

Thanks
 
Sort by date Sort by votes
If the others have "Admin" privs, there is really no way to lock it down.

In otherwords, whatever you lock down ... they can unlock and do as they please.

You need to restrict the use of the admin account.



Thanks

J. Kusch
 
Upvote 0 Downvote
Do you think Database Encryption would work? It would take more administration and more system resources, but perhaps would work. If you use transparent encryption, it would not work, but perahaps other kinds in SQL 2005 / 2008? I haven't worked with encryption yet, so I'm not sure; I've only heard about it, and am thinking it may be an option. Otherwise, J.Kusch is right, you'd need to restriction the access to the physical box.


-Ovatvvon :-Q
 
Upvote 0 Downvote
If the only admins you're worried about are those who have access to the actual server, then how about removing the built-in administrator account on SQL Server and requiring SQL authentication? You'd have to make sure it wouldn't break anything but it could help. Just a thought.
 
Upvote 0 Downvote
Ya know, I was just thinking...this is silly. If they're admin's on the box, they should be trustworthy. If they're not trustworthy, they shouldn't be admin's. Am I thinking about this wrong here?


-Ovatvvon :-Q
 
Upvote 0 Downvote
Ovatvvon,
No you aren't thinking that wrong. Admins should be trustworthy. If you have admins which aren't get rid of them.

Fuzzy,
Why would you use SQL Authentication after removing the buildin\Administrators group from the server? SQL Authentication is much less secure than using Windows Auth as OLE passes the username and password in plain text when it's logging in when using SQL Auth.

Not to mention most people will not share their domain login with other employees, but they have no problem sharing other system passwords.

takaoki,
Setup Windows logins into the SQL Server for anyone who needs sysadmin rights (A domain group is the easiest way to do this and make sure that you don't loose access to the server). Once you have done this and made the group a sysadmin in the SQL Instance, remove the BUILTIN\Administrators group from having sysadmin rights.

If you are worries about your DBAs seeing your data, there isn't anything you can do about that.

Denny
MCSA (2003) / MCDBA (SQL 2000)
MCTS (SQL 2005 / Microsoft Windows SharePoint Services 3.0: Configuration / Microsoft Office SharePoint Server 2007: Configuration)
MCITP Database Administrator (SQL 2005) / Database Developer (SQL 2005)

My Blog
 
Upvote 0 Downvote
Good points, MrDenny. I wasn't thinking straight. Windows Authentication is more secure. Sorry about that. :)
 
Upvote 0 Downvote
Mr Denny,

Does removing the BUILTIN/Administrators group prevent Windows 2003 Admins from having sysadmin rights in SQL Server?

Thanks
 
Upvote 0 Downvote
Yes removing the BUILTIN\Administrators will prevent Windows Admins from having sysadmin rights to the SQL Server.

Denny
MCSA (2003) / MCDBA (SQL 2000)
MCTS (SQL 2005 / Microsoft Windows SharePoint Services 3.0: Configuration / Microsoft Office SharePoint Server 2007: Configuration)
MCITP Database Administrator (SQL 2005) / Database Developer (SQL 2005)

My Blog
 
Upvote 0 Downvote
Thanks Mr Denny,

Is it safe to remove BUILTIN\Administrators? I seem to recall reading an article somewhere that listed a bunch of caveats related to this. I'd have to dig it up.
 
Upvote 0 Downvote
Yes it is safe to do.

If you use full text indexing you need to add the NT AUTHORITY\Local System account into the server with sysadmin rights as this is the account which the full text indexing service runs under, and SQL 2000 and older do not support running this service under an account other than the local system.

If you have a cluster make sure that the account which monitors the cluster is setup in the server so that it can connect or your instance will start bouncing between the nodes.

Make sure that your account is setup as a sysadmin before going this otherwise you'll lock your self out of the instance.

Those are pretty much the big gotchas.

Denny
MCSA (2003) / MCDBA (SQL 2000)
MCTS (SQL 2005 / Microsoft Windows SharePoint Services 3.0: Configuration / Microsoft Office SharePoint Server 2007: Configuration)
MCITP Database Administrator (SQL 2005) / Database Developer (SQL 2005)

My Blog
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

grnzbra
  • Locked
  • Question
SQL Server in Windows
Replies
1
Views
118
pjw001
pjw001
CodeWell
  • Locked
  • Question
SQL Server 2017 Install Issue - Database Not in Configuration Manager
Replies
0
Views
96
CodeWell
CodeWell
bethabernathy
  • Locked
  • Question
Front End Access 365 Database dsn Connection Fails when attempting to link to 2016 SQL server
Replies
1
Views
89
dhookom
dhookom
Ikatiemarie
  • Locked
  • Question
SQL Server 2008 SP_Send_dbmail
Replies
0
Views
176
Ikatiemarie
Ikatiemarie
dgillz
  • Locked
  • Question
SQL View not available to Excel Power Query
Replies
1
Views
75
dgillz
dgillz

Part and Inventory Search

Sponsor

Back
Top