I am re-posting this from the security Forum where it remains un-answered.OK, Here's the set up.I have a Windows 2003 box, soon to have SSL installedOn it is IIS 6.0, SQL 2005 Standard Edition (5Cal user lic) SOON I'll have a prod enviornemnt where a web app being served by IIS is accessing SQL. I can go into SQL and set up a user account, call it MyAppSQLAcess, and code that into the connectionn string and lock it down to the tables/db it has access to. Or I can do it w/windows authentication, or I can do it a number of other ways, the question is this:What is the best way for an asp.net app being server by IIS 6.0 to access data from SQL 2005 server when they are all on the same BOX? WRT Speed and security? Thanks Dan
You really should take some time to read the information in the link below which is also in SQL 2005 Books Online. It'll help you in making informed decisions.
http://msdn2.microsoft.com/en-us/library/bb283235.aspx
Best of Luck!
|||
Thanks!
Nice link. Here is also another short concise article I found helpful
http://vyaskn.tripod.com/sql_server_security_best_practices.htm
No comments:
Post a Comment