|
发信人: reynolds(雷龙.DBA中) 整理人: reynolds(2002-02-22 13:01:52), 站内信件 |
| 56. On the server, you create a new database named EmployeeData. The EmployeeData database will store confidential information about company employees. You need to allow only authenticated users to access the EmployeeData database. Which Transact SQL statement should you execute?
A. EXEC sp_revokelogin ‘guest’ B. EXEC sp_droplogin ‘guest’ C. EXEC sp_revokedbaccess ‘guest’ D. EXEC sp_addrolereader ‘db_denydatareader’, ‘guest’ Answer: C Reason: A、B比较容易混淆,A、B限制太高了,不合适。D是不正确的选择。 ====================================================================== 固定数据库角色 可以创建的固定数据库角色在数据库级别上定义,并存在于每个数据库中。可将任何有效的用户帐户(Windows NT 4.0 或 Windows 2000 用户或组,或 SQL Server 用户或角色)添加为固定数据库角色成员。每个成员都获得应用于固定数据库角色的权限。固定数据库角色的任何成员都可将其他用户添加到角色中。 下表描述固定数据库角色。 db_owner 进行所有数据库角色的活动,以及数据库中的其它维护和配置活动。该角色的权限跨越所有其它固定数据库角色。 db_accessadmin 在数据库中添加或删除 Windows NT 4.0 或 Windows 2000 组和用户以及 SQL Server 用户。 db_datareader 查看来自数据库中所有用户表的全部数据。 db_datawriter 添加、更改或删除来自数据库中所有用户表的数据。 db_ddladmin 添加、修改或除去数据库中的对象(运行所有 DDL)。 db_securityadmin 管理 SQL Server 2000 数据库角色的角色和成员,并管理数据库中的语句和对象权限。 db_backupoperator 有备份数据库的权限。 db_denydatareader 拒绝选择数据库数据的权限。 db_denydatawriter 拒绝更改数据库数据的权限。 ====================================================================== 57. You are the administrator of a SQL Server 2000 computer. You configure SQL Server to perform auditing. Audit logs are saved in the C:\MSSQL\Audit folder. The server functions normally for several days, but then the MSSQL Server Service shuts down without warning. You cannot restart the service. You need to restart the MSSQL Server service. What should you do? A. Set the SQLServerAgent service’s startup method to disabled. Start the MSSQLServer service. B. Start the MSSQLServer service manually by using the -s startup option. C. Start the MSSQLServer service manually by using the -m startup option. D. Delete the audit logs from the C:\MSSQL\Audit folder. Start the MSSQLServer service. Answer: D Reason: 典型的日志充满磁盘的例子。 58. You are the administrator of a SQL Server 2000 computer. The server contains confidential information about contracts on which your company has placed bids. Company policy requires that bid information be removed permanently from the database one year after the bid closes. You need to comply with this policy and minimize server overhead. What should you do? A. Create a data Transformation Services (DTS) package to remove bids that have a closing date older than one year. B. Create a trigger to delete any bids that have a closing data older than one year. Bind the trigger to the bids table for all INSERT, UPDATE, and DELETE events. C. Create a stored procedure to delete any bids that have a closing date older than one year. Use SQL server agent to schedule the stored procedure to run every night. D. Create a view that contains a WHERE clause to exclude bids that have a closing date older than one year. Answer: C Reason: 我觉得B也是可以的,但是绝对不是最优的操作,一个数据库系统中INSERT, UPDATE 和 DELETE的操作会非常多,平凡调用触发器固然降低效率。 59. You are the administrator of a SQL Server 2000 computer. The server is a member of a Microsoft Windows NT domain named CORP. The server is configured for Windows Authentication. Several users can connect to the server by using SQL Query Analyzer. These users belong to a domain user group named DataUsers, and the server contains a login for CORP\DataUsers. Your company purchases a client/server application that implements its own user security and will access the server by using a login named Csapp1. You create a domain user account named Csapp1 and add it to the DataUsers domain user group. However, when you try to run the client/server application, you receive the error message, “The required SQL Server database cannot be accessed.” You need to ensure that the application runs properly. What should you do? A. Remove the Csapp1 domain user account from the DataUsers domain user group. Create a login for CORP\Csapp1. B. Configure the server for Mixed Mode authentication. Create a login named Csapp1, and configure it to access the application’s database. C. Create a local user account on the server, and name it Csapp1. Add a login for BUILTIN\Csapp1. D. Configure an application role in the application’s database, and name the role Csapp1. Set the application role password so that it is the same as the Csapp1 user account password. Answer: B Reason: 60. You are the administrator of a SQL Server 2000 computer. The server is used to store information for your company's accounting department. Database Role Select Insert Update Delete Accountants Allow Allow Deny Deny Brian Deny Blank Blank Blank Managers Allow Blank Allow Allow Salespeople Allow Blank Blank Blank Brian is a member of the Managers and Salespeople database roles. While working in the table, he reports that he can edit and remove information. However, he cannot view any of the information in the table. You need to allow Brian to view the information in the Accounting table. Which Transact-SQL statement should you execute? A. GRANT PRIVILEGES ON Accounting TO Brian B. GRANT SELECT ON Accounting TO Brian WITH GRANT OPTION C. REVOKE GRANT OPTION FOR SELECT ON Accounting TO Brian D. REVOKE SELECT ON Accounting FROM Brian Answer: D Reason: 删除明显拒绝的就可以了。 ---- / <>< o /| / <>< (o / |/| ) ) <@ < ( O )( \ |\| <>< ) <>< () \| \ \ 每天在网易游水的鱼 |
|
[关闭][返回] |