I apologize if this is an oft asked question.
We have a web server in our DMZ that needs access to a SQL server on the inside. We have been pulled two ways as to how to grant this access. One programmer says to create a Domain containing both machines and use NT authentication because SQL authent. can be easily compromised if the web server is hacked.
The other programmer suggests keeping the machines seperate and use SQL authent. because if the web server gets compromised they now have access to Domain wide services.
Any idea on which is more secure?
Are there any good white papers on this issue?
Thanks Al
atc-computing@comcast.net
We have a web server in our DMZ that needs access to a SQL server on the inside. We have been pulled two ways as to how to grant this access. One programmer says to create a Domain containing both machines and use NT authentication because SQL authent. can be easily compromised if the web server is hacked.
The other programmer suggests keeping the machines seperate and use SQL authent. because if the web server gets compromised they now have access to Domain wide services.
Any idea on which is more secure?
Are there any good white papers on this issue?
Thanks Al
atc-computing@comcast.net
