Information
When granting or revoking privileges to a database object, Sybase ASE allows the syntax
grant all to signify that all privileges applicable to the specified object should be granted
or revoked. It is recommended that use of grant all is avoided where possible.
Rationale:
Security best practice advocates the principle of least privilege, i.e. only the privileges that
are absolutely necessary should be granted to a user. In situations where all privileges are
not required, use of grant all violates this principle.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
1. Use specific grant statements to assign the required privileges.