I would *highly* recommend some method for the sql server to verify your
identity -- essentially you are opening an unsecured channel into your
sql server that allows anyone to run any command, as long as "call" is
the subject. Even if you check the from address, that can be easily
spoofed.

To do it right, you would need to embed the identifying information in
the body of the e-mail, such as a key or password. If you're really
paranoid, though, you would encrypt the e-mail and use a one-time pad
system so the key changes every time so that even if someone intercepted
the e-mail (and even somehow cracked the key), it would not help them.

-----Original Message-----
From: Paul Rairdon
[mailto:mssqldba-ezmlmshield-x79167499.[Email address protected]
Sent: Friday, May 28, 2004 9:57 AM
To: LazyDBA.com Discussion
Subject: RE: Response


I have made an SP that runs on my server that allows me to email
commands directly to the server. I use my pager at time to set off
processes or check a status here and there. You have to have SQL Mail
up and running for it to work. I don't know if it will do what you need
it to but if you can put it into a SP then you can fire it off with
this. This SP is on the master database and I set up a job to run it
every minute. Hope it helps.

MS Sql Server LazyDBA home page