I receive many questions and see many posts on newsgroups asking about SQL Server 2005 security (something like "Do you know about a guide about SS2005 security considerations?"). IMHO, the best places to start with are SQL Server 2005 Security Considerations Also worth value are the Best Practices site, visit: Patterns & Practices: Security. Finally, for SQL Server 2000 you can check Chapter 3 of the Operations Guide: SQL Server 2000 Operations Guide: Security Administration