|
 |
On Fri, 04 Jul 2008 17:53:07 +0200, Gail Shaw wrote:
> "Jim Henderson" <nos### [at] nospam com> wrote in message
> news:486deaf7$1@news.povray.org...
>> On Fri, 04 Jul 2008 09:03:49 +0100, Invisible wrote:
>>
>> > Er... like, WTF?
>>
>> That said, there are ways, for example, to prevent a sysadmin from
>> seeing files in a filesystem.
>
> And there are ways (at least in SQL Server) to keep the windows
> sysadmins out of a database, however you can't stop them shutting down
> the service and taking the data files or changing the passwords of the
> accounts that do have sysadmin rights.
Yep. That's the thing that really makes me chuckle, too. Then there's
auditing systems that have to be enabled by the administrator.
> We've done that as a standard across the organisation, along with
> ensuring that the database administrators don't have administrative
> rights to the OS.
Yeah, that would help somewhat.
Jim
Post a reply to this message
|
|
