I am trying to figure out how to prevent a situation where a user has a runaway page that is a super user page (and unauthorized). The page has a text area that takes an SQL query and executes this on the applications database.
My question is, how can such unauthorized tasks be prevented in general? Thanks in advance.