Hello All, I have updated the Splunk App for DB connect(V1.1.1). I was testing with few of the options before giving access to the end users.
The DB is configured with read-only option but when i run the update query it is able to update the table.
More over there is a security leakage also i have observed. When i form a query with proper DB name, schema, table name, i can see the content and update the same as the account has access to the other DB as well. We are using SQL Server.
SELECT * FROM [msdb].[dbo].[table_name]
I understand that the user can be modified to have only read permission, if this is the only option why is there a READ-ONLY option on configuration page? Please guide me if i am doing something wrong.
Thanks