Cheryl R. wrote:

<<Forgot to tell you we are starting to update the power builder apps
with .net and use the user name & password to authenticate access to
the .net app. These are stored in tables in the sql db. Here there is
no user group profiles in sql, public user has the same rights as db
owner.

If you success in disabling QueryTables, what about other data access
ADO, DAO, using System.Data.OleDb, etc? I think you need to secure you
database server properly.