COM SQL Security

jkgh

Hi, I'm not making a very good attempt at security in my n-tier app (someone else has always lookafter that bit!!!!). I think the main problem is that I don't understand how COM handles it properly :-O I wonder if anyone can give me a pointer (no pun intended) or two. I'm wandering about the Securiy section now on the MS site and have found the Security and COM overview, but I'd really like some help on how to distribute the security between COM and SQLServer7. I was trying to let NT deal with the security as much as possible but I've not achieved my goals property. At present I'm using SQL Role filled with NT groups, I think I'm going to run into problems if I need to let the users run other non-App SQL procedures against the data - nothing stops them doing what they want. As you can see I'm somewhat of a security novice. Thanks in advance. Al. PS I think I found a solution to the circular references problem - Hash tables on the pointer value looking for duplicate values - should be quick. Al When a man goes on a date he wonders if he is going to get lucky. A woman already knows - Frederick Ryder