> Is it a security risk to allow site owners to access their > databases in a shared hosting arrangement by using Enterprise > Manager? (Obviously I'm talking a windows box and MS > Sqlserver2000+) > > I would have thought it was no more of a risk than allowing > users to access their databases with other tools, no?? > > I'm looking at a new hosting company and they're terrific in > many respects, but they dont allow access to SQLServer > databases except by the on line browser-based SQLManager and/or > ColdFusion. To that's going to mean writing export routines to > export data to CSV files or something, ftp it to the site, then > run an app on the site to import the data to the SQL that way.
It's a security risk to allow direct connections to a remote database over a public network. Using Enterprise Manager itself is no more of an inherent risk than any other tool that does this, but the hosting company in question doesn't allow you to access your databases over the network at all, apparently. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:231419 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
