what is ‘Is_trustworthy_on’ option in SQL server


















This setting is_trustworthy_on is used to control the access of CLR based stored procedures, UDF’s(Scalar & Table Valued), Triggers, Aggregates, User defined data types accessing external resources when these are executed under
SQL server service accounts

What are external resources?

External resources include lot of things starting from accessing a network shared locations, all the

Supported Namepaces by SQL server are not considered external resources. When coming to resources,

some of resources where SQL server considers them as External resources include

writeto event logs, use network services like DNS and Active Directory, create outbound
network connections including Web access (port 80 and 443) and SMTP mail access (port 25), and access HKEY_CLASSES_ROOT, HKEY_LOCAL_MACHINE,HKEY_CURRENT_USER, HKEY_CURRENT_CONFIG, and HKEY_USERS registry keys

when IS_TRUSTWORTHY_IS is set OFF and if CLR is trying to access these resources even under UNSAFE mode then then execution
results a falure

Advertisement

5 thoughts on “what is ‘Is_trustworthy_on’ option in SQL server

  1. Pingback: Introduction to CLR in SQL Server « sqljunkieshare
  2. Pingback: Hacking SQL Server Stored Procedures – Part 1: (un)Trustworthy Databases | NetSPI Blog
  3. Pingback: Hacking SQL Server Stored Procedures – Part 3: SQL Injection | NetSPI Blog
  4. Pingback: SQL Server存储过程Hacking(I)之可信数据库 – 安全脉搏
  5. Pingback: 科普:从基础开始谈Sql Server数据库渗透 | 安勤唯独

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s