Is enabling xp_cmdshell a security risk?
After listening to an interview of Sean McCown (twitter) and some lively discussion on xp_cmdshell, I decided it would be a worthy enough discussion to create a blog post. At a minimum it might stir up some opinions. There are many varying opinions out there, including some really good opinions that applied to SQL Server 2000, but don’t really apply …