Manage Learn to apply best practices and optimize your operations.

Blocking access to SQL line commands

You may think that blocking access to SQL line commands will protect your data. However, Carol Woodbury warns that object level security is the only real way to keep your data safe from unwanted manipulation.

Can we give access to SQL to a user only for a select command? We want to block access to SQL for delete, update, insert? Is this possible?
The way to implement this is to protect the objects, not the SQL commands. If you can find a way to successfully block some features of SQL, access to objects is still available through FTP, DDM, ODBC, file transfer and users with legitimate access to a command line. The only way to ensure that your objects are protected is to use object level security.

Dig Deeper on iSeries system and application security

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.