I have written an stored proc that reads from a text file and executes
the script as dynamic sql.
If the text file contains malicious code,I want to be able to detect it
and prevent the stored procedure from executing.
I've tried revoking delete,insert,update rights all tables in the
database to the user .
I then granted execute rights to the stored procedure for the same
user. But the user is still able to delete a record from the table by
executing the stored procedure.
Is there any means to I revoke,insert,delete ,update rights to a stored
proc?