Mark’s Site

So you probably know that for a given SQL user, you can specify what permissions the user can have, such as CREATE, DROP, INSERT, UPDATE, DELETE etc. But are you one of those people that just sets up a general user with S/I/U/D permissions and leaves it at that?

Do you necessarily assume that ‘delete’ actually means deleting data in your system? Perhaps you should consider simply hiding the data when information is deleted, so in emergencies, data can be recovered without the need for actual database recovery extremes.

When you’re allowing content to be managed by various users, whom you may or may not trust, you need some form of control. That control comes from a well thought out security system.