Results 1 to 3 of 3
  1. #1
    Join Date
    Dec 2002
    Location
    Amsterdam
    Posts
    12

    Cool Unanswered: Windows authentication vs SQL server

    Hello,

    I'm writing some software for clients and the connection is done via de username passwd methode, not windows authentication. One of the salespeople is creating FUD now, talking about a "major security leak" because, if someone has the username / password, he can view the data in the mssql database. ( seems normal to me for a username/password combination - winNT or not - but this news can be shocking to the uninitiated)
    Is there any paper on his comprehensionlevel that deals with this issue?
    Or you've got an opinion on this?

    Thanx for any pointers,
    W13

  2. #2
    Join Date
    Feb 2004
    Location
    india
    Posts
    67
    This is a universal problem.
    I have designed a unique architecture for handling this and it is working great for all my in-house applications.

    try designing a custom application.

    Rgds
    Srinivas varanasi

  3. #3
    Join Date
    Jun 2004
    Location
    Arizona, USA
    Posts
    1,848
    Well, if someone has a window's username and password, they can ALSO see the data if they connect while using windows authentication.

    The major advantage of using Windows authentication is to make system administration easier. If you require strong passwords (and do not release the user names/passwords), there should not a major "Security Leak" in either case.
    Lou
    使大吃一惊
    "Lisa, in this house, we obey the laws of thermodynamics!" - Homer Simpson
    "I have my standards. They may be low, but I have them!" - Bette Middler
    "It's a book about a Spanish guy named Manual. You should read it." - Dilbert


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •