I will be installing a SQL Server 2000 database on a Web
Server. How do I secure the database so that only my Web
application can access it? I am concerned that someone
could access it over the internet, make a copy of it, or
corrupt it. The ASP.Net web application uses stored
procedures when talking to it.
ThanksHi Joe,
There are several factors to consider when protecting SQL Server. I think
a very good guide to securing SQL Server is found at this URL:
http://msdn.microsoft.com/library/d...-us/dnnetsec/ht
ml/ThreatCounter.asp. This URL references chapter 18 of a document titled
"Improving Web Application Security: Threats And Countermeasures".
This guide covers a lot of ground including account management for users
and services, physical protection of the data files and protection of the
server over the network.
You may want to begin your research with this guide.
Thank you.
Gary Whitley
This posting is provided "AS IS" with no warranties, and confers no rights.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment