Ping a Specific Port

Question

Ed Leighton-Dick

Asked: 2009-07-22 12:13:23 +0800 CST2009-07-22 12:13:23 +0800 CST 2009-07-22 12:13:23 +0800 CST

Hiding SQL Server 2005 system objects/schemas from Microsoft Query

772

End users in my company frequently use Microsoft Query (through Excel) to perform ad-hoc queries of selected SQL Server databases. As we move to SQL Server 2005 on the backend, we are discovering that MS Query lists all objects from all schemas, regardless of whether the user has permissions to those objects or schemas (they don't). I have also tried using the newer Native Client drivers (both 9.0 and 10.0) but received the same results.

I have found that the users can select the schema they want when they select the connection in Microsoft Query, but if possible, I'd like to hide the unnecessary system objects and schemas to prevent confusion. Has anyone discovered a way to do this?

6 Answers

Voted

Suresh · Answer 1 · 2011-04-29T11:09:13+08:00

Best Answer

Suresh

2011-04-29T11:09:13+08:002011-04-29T11:09:13+08:00

Recently an article was published about this issue on Microsoft's KB: Microsoft Query lists user objects and system views in the query wizard.

2

MileHigh · Answer 2 · 2012-11-30T10:23:24+08:00

MileHigh

2012-11-30T10:23:24+08:002012-11-30T10:23:24+08:00

http://support.microsoft.com/kb/2513216 Microsoft blames users? It is a known bug in SQL Server that Microsoft will not address. There are many warnings about deny of Select for the Public profile.

2

squillman · Answer 3 · 2009-07-22T12:41:40+08:00

squillman

2009-07-22T12:41:40+08:002009-07-22T12:41:40+08:00

No, not that I've ever found. Microsoft Query does a call to [database].sys.sp_tables which in turn pulls from sys.all_objects and sys.all_columns in order to get the table / view information to present to the user. You can't deny execute to sp_tables (ok, you can but at the server level) so my conclusion to this one has always been "you're out of luck"...

1

mrdenny · Answer 4 · 2009-07-22T16:31:11+08:00

mrdenny

2009-07-22T16:31:11+08:002009-07-22T16:31:11+08:00

Users should only be able to see objects which they have access to. It's part of the new security model of SQL Server 2005 and higher. Check that the users don't have rights to those objects through the public role. Can they see the objects via SQL Server Management Studio?

1

Booji Boy · Answer 5 · 2009-07-22T16:53:02+08:00

Booji Boy

2009-07-22T16:53:02+08:002009-07-22T16:53:02+08:00

I agree. I've found that in Excel 2000/2003 (not sure about 2007) if you use a ODBC system DSN to access sql server 2000 the users can only see objects they have permissions to. I'll check SQL Server 2005 w/ Excel 2007 and update later.

0

Sergio O · Answer 6 · 2015-02-18T02:34:26+08:00

Sergio O

2015-02-18T02:34:26+08:002015-02-18T02:34:26+08:00

DbDefence uses undocumented features to hide database schema even from DBA. Works in SQL Server 2005. They give away free version as well.

If you just want to hide it slightly you can use "EXEC sys.sp_MS_marksystemobject"

-3

Hiding SQL Server 2005 system objects/schemas from Microsoft Query

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?