Can someone advise potential security concerns in giving VIEW SERVER STATE
access to developers on production server?guest5.
VIEW SERVER STATE exposes information about the server and its current
state. (As you might guess by the name.) This allows you to see all
processes that are running in 'sp_who' and, in general, makes the statistics
in the dynamic management views visible. It also allows a user to use DBCC
INPUTBUFFER
In the Books Online if you search for "VIEW SERVER STATE" you will get about
110 things reported there, if you want to review the details.
The question is: Who needs this level of information? I think it is
reasonable for those who actively support the databases and server to have
this access, but I would not make it generally available.
RLF
"guest5" <guest5@.discussions.microsoft.com> wrote in message
news:20CC60D6-8D82-4CBB-B6C8-9D2466B27624@.microsoft.com...
> Can someone advise potential security concerns in giving VIEW SERVER STATE
> access to developers on production server?
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment