Hi guys,
I do not like the fact that public role has 'execute' permission on sde system stored procedures because it potentially allows (correct me if I'm wrong) to mess around sde system tables for a user that has only select permissions on all tables (sde and gdb included).
Are all permissions really necessary or the default configuration is a bit generous (for example default permissions on GDB tables are redundant for a geodatabase reader) ? Is there a minimum subset of stored procedures which is really necessary for a database reader ?
Any workaround ?
Alberto
