• Eric Hobbs (4/15/2011)


    Hopefully I'm not being dim here, but this seems like a lot of effort and increased overhead on your SQL database, for something that can be handled much more efficiently at the transport layer. In general, if you want to ensure that connections to a server are only made by a specific IP address, then you set the network card up to only accept connections from a specific IP, address, or you use a firewall, since this is more robust at detecting IP spoofing ect... by all means, limit the access of the security principle, but creating a trigger for each time a connection is made seems like a really bad idea.:w00t:

    In my case I want to make sure that application is connected to the database only from application server with specific login. Firewall wouldn't work here as users with other logins allowed to connect from different network. It gives you more flexibility. I think there could be another level of filtering added as well - Application Name.