I have a program that allows the user to execute SQL scripts. I have

Question

0

Asked: May 29, 20262026-05-29T18:34:00+00:00 2026-05-29T18:34:00+00:00

I have a program that allows the user to execute SQL scripts. I have

0

I have a program that allows the user to execute SQL scripts. I have a user login to the program but a requirement has come in to prevent any execution even if its an admin user.

What I mean is the user cannot modify tables etc. Normally I would recommend all user connections be setup as read only but there is one element in the program that needs to be able to do an INSERT.

I want to detect the keywords that the user may execute eg/INSERT, UPDATE, ALTER and was hoping there was a defined list somewhere.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-29T18:34:01+00:00

Editorial Team

2026-05-29T18:34:01+00:00Added an answer on May 29, 2026 at 6:34 pm

I think you are better off with a whitelist of things that you want to allow the user to do rather than trying to blacklist everything you do not want them to do.

Are they only allowed to run a SELECT?

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a program that allows the user to execute SQL scripts. I have

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply