RE: Command to execute Copy,Delete etc instead of XP_cmdShell

SSC Guru

Points: 1003865

September 17, 2013 at 4:25 pm

srajinigandh (9/17/2013)
...company standards now does not permit usage of XP_cmdshell as it has security flaws, ...

Sigh....

That's like saying that DELETE has a flaw in it because it will delete all rows if you don't include a WHERE clause. XP_CmdShell isn't "the" security problem. How people misuse is the actual problem and such misuse is pretty easy to prevent.

--Jeff Moden

RBAR is pronounced "ree-bar" and is a "Modenism" for Row-By-Agonizing-Row.
First step towards the paradigm shift of writing Set Based code:
________Stop thinking about what you want to do to a ROW... think, instead, of what you want to do to a COLUMN.

Change is inevitable... Change for the better is not.

Helpful Links:
How to post code problems
How to Post Performance Problems
Create a Tally Function (fnTally)