You could create a role for that user (and any other user you'd like to add).
Create views or stored procedures or functions for those user and lock down all tables.
Within those views or sp's you could use a top(1000) clause or, when using a sp or a function, you could even use a parameter to define how many rows would be returned.
DECLARE @n INT
SELECT TOP (CASE WHEN @n>4 THEN 1 ELSE @n END) *
LutzA pessimist is an optimist with experience.
How to get fast answers to your question[/url]
How to post performance related questions[/url]
Links for Tally Table [/url] , Cross Tabs [/url] and Dynamic Cross Tabs [/url], Delimited Split Function[/url]