Well it is for some people who put their username and password in the DSN and the DSN is the same a sthe database name. Thus any other customer on the server can work out your DSN and delete your data.
Russ -----Original Message----- From: Russ [mailto:[EMAIL PROTECTED] Sent: 11 January 2006 18:20 To: CF-Talk Subject: RE: Professional Opinions on HostMySite.com What's the problem with SQL Studio Express showing all the dbs? I mean yea... they show up, and it's annoying as hell if you have to wait for all of them to load, but is it really a security issue? -----Original Message----- From: Jamie Price [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 11, 2006 12:12 PM To: CF-Talk Subject: Re: Professional Opinions on HostMySite.com >will say that is one issue I'm still not happy with. If you use >"Microsoft SQL Server Management Studio Express", you can see all >databases on a server. This is a failing of the software, not of the server-side setting. MS just recently got a patch for the 2000 series of SQL that hides db's you don't have access to. I'm not sure what the story is on the new 2005 install, but I'm sure MS will eventually release a similar patch for it as well. As for Datasources and security, originally we didn't sandbox DSN's in the fashion you're referring to, but that has been changed some time ago due to customer and MM feedback. Also, the JSP settings that James is referring to were also fixed on the newer servers; we only have one or two running on the less secure config and those will be updated or migrated off our network soon I believe. Also, it should be noted that even though the JSP issue was tossed around this board, I believe we are the ONLY host running a shared setup to have actually resolved that at all - others that were tasked with it simply did nothing. :-) Jamie Price HMS Postmaster email: jamie at hostmysite.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:229221 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
