Partager via


Don't assume the SQL user is a DBO

Following up to my other post https://blogs.msdn.com/mpoulson/archive/2006/03/06/544576.aspx.  When you write an application that is going to do work with the SQL database DO NOT HARD CODE DBO. 

It is a security risk to the hoster if they allow the user to be a dbo user.  So with that noted make sure you do not hardcode the owner as objects (Tables, stored procs, Functions) as dbo.