I have been tasked with writing and applying security to our Dev, Test, UAT databases. Our company is growing and the number of developers is increasing. Can you advise of some articles on security (besides this one) you or someone you know/respect wrote?
On another note:
We use the aspnet_authentication for most if not all of our applications. Would you still create an application role and then put the aspnet_* roles in the web app role?
Os is it creating the web app role then creating a user to put in that role and any additional role needed? That seems like more work.
______________________________
AJ Mendo | @SQLAJ