Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase «««1234

Today's Humor.. Expand / Collapse
Author
Message
Posted Thursday, July 31, 2014 4:26 PM


SSCoach

SSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoachSSCoach

Group: General Forum Members
Last Login: Today @ 12:05 AM
Points: 17,710, Visits: 15,580
GilaMonster (7/31/2014)
Michael Valentine Jones (7/31/2014)

The last vendor I had to deal with had an application that required the use of a specific SA password to connect to the database on a specifically named (non-default) instance. Having an application use a hard coded SA password is really bad security, but it's just some medical application, so no big deal.

...

Another vendor application (for a building security system) required the use of a blank SA password so I guess it can always get worse.


That's when you rename the sa login to something which sounds useless, disable it and create a new login called 'sa' with just the permissions you want it to have.
Want sa? Sure, just gimme a couple minutes...


RickRoll them in the best way possible.




Jason AKA CirqueDeSQLeil
I have given a name to my pain...
MCM SQL Server


SQL RNNR

Posting Performance Based Questions - Gail Shaw
Posting Data Etiquette - Jeff Moden
Hidden RBAR - Jeff Moden
VLFs and the Tran Log - Kimberly Tripp
Post #1598532
Posted Thursday, July 31, 2014 5:19 PM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: General Forum Members
Last Login: Yesterday @ 11:28 PM
Points: 35,263, Visits: 31,750
Luis Cazares (7/30/2014)
Don't forget to use NOLOCK hints on all your queries and never ever run DBCC CHECKD, update statistics or rebuild indexes. You might encounter a lot of objects locked during this operations.


PS. Just to make it safe for anyone lurking in here, this is just humor.


Nah... WITH(NOLOCK) is old hat and too much work. Just set the entire server isolation level to "Read Uncommited".

To reiterate... "Just to make it safe for anyone lurking in here, this is just humor."


--Jeff Moden
"RBAR is pronounced "ree-bar" and is a "Modenism" for "Row-By-Agonizing-Row".

First step towards the paradigm shift of writing Set Based code:
Stop thinking about what you want to do to a row... think, instead, of what you want to do to a column."

(play on words) "Just because you CAN do something in T-SQL, doesn't mean you SHOULDN'T." --22 Aug 2013

Helpful Links:
How to post code problems
How to post performance problems
Post #1598538
Posted Thursday, July 31, 2014 5:22 PM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: General Forum Members
Last Login: Yesterday @ 11:28 PM
Points: 35,263, Visits: 31,750
Grant Fritchey (7/31/2014)
Sarah Wagner (7/31/2014)
I hired in to a software company and sad to say we were one of those vendors. Gladly we are not anymore as I rewrote all of our recommendations to clients documentation. A little education goes a long way.


Thank you!

One down 678,342 to go...


BWAAAA-HAAAAA... there you go underestimating again.


--Jeff Moden
"RBAR is pronounced "ree-bar" and is a "Modenism" for "Row-By-Agonizing-Row".

First step towards the paradigm shift of writing Set Based code:
Stop thinking about what you want to do to a row... think, instead, of what you want to do to a column."

(play on words) "Just because you CAN do something in T-SQL, doesn't mean you SHOULDN'T." --22 Aug 2013

Helpful Links:
How to post code problems
How to post performance problems
Post #1598539
Posted Thursday, July 31, 2014 11:44 PM
Hall of Fame

Hall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of Fame

Group: General Forum Members
Last Login: 2 days ago @ 11:09 PM
Points: 3,108, Visits: 11,502
GilaMonster (7/31/2014)
Michael Valentine Jones (7/31/2014)

The last vendor I had to deal with had an application that required the use of a specific SA password to connect to the database on a specifically named (non-default) instance. Having an application use a hard coded SA password is really bad security, but it's just some medical application, so no big deal.

...

Another vendor application (for a building security system) required the use of a blank SA password so I guess it can always get worse.


That's when you rename the sa login to something which sounds useless, disable it and create a new login called 'sa' with just the permissions you want it to have.
Want sa? Sure, just gimme a couple minutes...



The medical application used several databases, so figuring out the permissions that the app required was just too much work to bother with switching the SA account. Since it was on an isolated named instance, I just let it be. Sometimes I just can't bother to care.


I actually liked that anyone with network access would be able to defeat the building security system by giving themselves access by direct updates to the database. That was a system that I discovered already "in place" running on an ancient notebook computer setting on the back of a rack in the computer room at a remote site.




Post #1598575
Posted Friday, August 1, 2014 2:01 AM
SSC Veteran

SSC VeteranSSC VeteranSSC VeteranSSC VeteranSSC VeteranSSC VeteranSSC VeteranSSC Veteran

Group: General Forum Members
Last Login: Yesterday @ 12:49 AM
Points: 250, Visits: 417
"All my SSC forum answers come with a money back guarantee. If you didn't like the answer then I'll gladly refund what you paid for it."

Love it!!!!
Post #1598609
Posted Friday, August 1, 2014 2:46 PM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Yesterday @ 6:16 PM
Points: 7,738, Visits: 9,487
Alvin Ramard (7/30/2014)
Luis Cazares (7/30/2014)
Eirikur Eiriksson (7/30/2014)
Luis Cazares (7/30/2014)
Alvin Ramard (7/30/2014)

WAIT!!!! What kind of database MUST be repaired regularly????


The one that is shrinked regularly?


Guess shrinked is the simple mode and shrunken is the full recovery mode

Go ahead, make fun of my lousy english
Actually, that might help me to remember the correct form.


Which form? The first normal form?

No, the first normal form is surely scrincaþ (or scrinceþ, if databases aren't feminine) - or maybe scrinceð (or scrincað) or perhaps even gescruncan; even shrinked is a modern aberration, and anyway just the silly southern spelling of shrenkit; shrunk and shrunken are weird hyper-modern forms of schrunken and shronke. Nobody speaks English anymore.


Anyway, "shrinked" (the southern spelling of "shrinkit") has been around for quite a bit more than half a millenium; but ignorant spelling and grammar pedants will claim it's a utterly wrong so that it's safer to stick to shrunk (past participle or adjective) and shrunken (adjective, possible past participle but not with "have" as auxiliary verb).


Tom
Post #1598812
« Prev Topic | Next Topic »

Add to briefcase «««1234

Permissions Expand / Collapse