[英]How safe are SQL Server 2005 MDF files? (re: security)
We've started using SQL Server 2005 Express for a project and I noticed that every database has it's own MDF/LDF files. 我们已经开始将SQL Server 2005 Express用于一个项目,并且我注意到每个数据库都有它自己的MDF / LDF文件。 Whenever we need to duplicate our database (to another SQL Server) we simply copy these files and then attach them to the database. 每当我们需要将数据库复制到另一个SQL Server时,我们只需复制这些文件,然后将它们附加到数据库即可。
However, this has me wondering about the security of these files. 但是,这使我想知道这些文件的安全性。 If somebody from the outside gets a copy of them are they encrypted or can they simply attach to them like I'm doing? 如果从外面得到某人的副本,则对它们进行加密还是可以像我在做的那样简单地附加到它们上? I'm not prompted for any passwords when I copy/attach them myself so I'm a bit nervous. 当我自己复制/附加密码时,没有提示输入任何密码,因此我有点紧张。
Thanks, John 谢谢,约翰
They are not encrypted and can be loaded/attached by any person with read access to the MDF/LDF files. 它们没有经过加密,任何对MDF / LDF文件具有读取权限的人都可以加载/附加它们。
There are a couple of approaches you can take if the actual MDF files need to be protected. 如果需要保护实际的MDF文件,可以采用两种方法。 (This assumes that merely using file permissions to lock down access isn't feasible, for example if you need to protect against users with Administrative rights to the machine or direct HDD access.) (这假设仅使用文件权限来锁定访问是不可行的,例如,如果您需要防止对计算机具有管理权限或直接进行HDD访问的用户受到保护)。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.