系统从sql2000到sql2008的版本升级调查tempdb,MS网站有下面描述
Any user can create temporary objects in tempdb. Users can only access their own objects, unless they receive additional permissions. It is possible to revoke the connect permission to tempdb to prevent a user from using tempdb, but this is not recommended as some routine operations require the use of tempdb. 也就是说原来可以访问他用户的临时表,2008后只能访问自己的临时表。
但是要是给了足够的权限就能访问他用户的临时表。这里想请教的是,要访问他用户的临时表的最小权限是什么?
附上这样的权限后又有什么安全隐患?
Any user can create temporary objects in tempdb. Users can only access their own objects, unless they receive additional permissions. It is possible to revoke the connect permission to tempdb to prevent a user from using tempdb, but this is not recommended as some routine operations require the use of tempdb. 也就是说原来可以访问他用户的临时表,2008后只能访问自己的临时表。
但是要是给了足够的权限就能访问他用户的临时表。这里想请教的是,要访问他用户的临时表的最小权限是什么?
附上这样的权限后又有什么安全隐患?
[Select * from tempdb.dbo.sysobjects]可以看见普通用户建的临时表,
但是超级用户对该表进行DML,DDL都是报没有权限。
也就是说,即使给用户超级权限了也不能操作其他用户的临时表。