User vs owner rights

[Ramesh]

Hi,

I learnt at some point that it s more secure to set the queries rights at
owners level rather than grant rights to the table itself. and i have been
doing that, but quite blindly.

could someone clarify as to what is the exact benefit of doing this? what i
can see that it limits the extent of change a user can do to the table to
whatever the query will allow. Is there something besides this too?

Thanks
Ramesh

 

[Rick Brandt]

Hi,

I learnt at some point that it s more secure to set the queries
rights at owners level rather than grant rights to the table itself. and i
have been doing that, but quite blindly.

could someone clarify as to what is the exact benefit of doing this? what
i can see that it limits the extent of change a user can do to
the table to whatever the query will allow. Is there something
besides this too?
Thanks
Ramesh

The biggest reason is that it prevents users from linking to or importing
the tables into another file. They can access the data only from queries
you have created and they cannot link to a query. They can import a query
but it will not run in any other file since the tables are still in the
original file so there would be no point.

A common scenario is when your query uses a criteria that identifies the
user and only shows them a subset of the data. They can only see ALL the
data by looking at the table directly so you you use RWOP queries and deny
them direct table access.