Tag archives for db_owner security risks
db_owner security risks
A typical web-tier should only need DB_USER level access to a backend SQL Server database. The DB_USER contains DB_Writer, DB_Reader – and optionally, DB_EXECUTE privileges. Sometimes, web tiers will be…