Remove Exec Permissions To Extended Stored Procs

By Stevo Smocilac, 2006/11/27

Total article views: 67 | Views in the last 30 days: 5

Rate this |

Join the discussion |

Briefcase

I created this script to simplify the process of restricting access to high risk extended stored procedures. It will find any user or role which has execute permissions on any of the stored procedures in the "#High_Risk_Stored_Procs" temp table and will generate the relevant revoke statements to remove those permissions.

The current list of stored procedures was taken from "SQL Server Security" by Chip Andrews, David Litchfield and Bill Grindlay. But you can easily insert additional stored procs into the "#High_Risk_Stored_Procs" temp table.

To use just change your query results to Text and copy and past the results into a new query window.

N.B. Remember to test this in your development environment first and keep a copy of the revoke script so that you can easily roll back.

By Stevo Smocilac, 2006/11/27

Total article views: 67 | Views in the last 30 days: 5

Your response

Rate this |

Join the discussion |

Briefcase

Related tags

Defrag Tables

By Rahul Sharma | Category: Maintenance and Management

| 3,571 reads

Drop all Connections from a Database

By Rahul Sharma | Category: Maintenance and Management

| 1,779 reads

Forcibly Shrink the Transaction Log

By Steve Jones | Category: Maintenance and Management

| 6,836 reads

Recompile Compiled Objects

By wali | Category: Maintenance and Management

| 996 reads

Like this? Try these...

Usp_GetProcByText

By Additional Articles | Category: Miscellaneous

| 397 reads

Get DBObjects with Specified Owner

By Bhavesh | Category: Maintenance and Management

| 159 reads

MOM SCDWgroom Enhancement

By Sean Gorman | Category: Miscellaneous

| 348 reads

Already registered?

Free registration required

To read the rest of this article, and access thousands of other articles, we ask you to register on the site and subscribe to our newsletters.

Register

E-mail address:
Password:
Password (confirm):

Subscriptions

We ask you to register on the site and subscribe to our newsletters. Subscribing to our newsletters gets you:

ALL of our content (thousands of articles, scripts, and forum postings)
A daily newsletter (example)
A weekly news round up (example)
The opportunity to ask and answer questions in our forums
A daily Question of the Day to test and help you increase your knowledge of SQL Server.

We ask that you give the newsletter a try for a week. Over 200,000 SQL Server Professionals a day find it entertaining and useful. If not, you are welcome to unsubscribe at anytime.

Steve Jones
Editor, SQLServerCentral.com