Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase ««12345»»»

Audit Database Changes in the Real World Expand / Collapse
Author
Message
Posted Wednesday, June 11, 2008 8:38 AM
Old Hand

Old HandOld HandOld HandOld HandOld HandOld HandOld HandOld Hand

Group: General Forum Members
Last Login: Thursday, May 8, 2014 10:08 PM
Points: 358, Visits: 397
What a great system! What are the requirements for the monitoring server and how many does yours monitor? Can it be done on the cheap with express or workgroup edition?
Post #515228
Posted Wednesday, June 11, 2008 8:39 AM
SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Monday, December 15, 2014 4:15 AM
Points: 5,478, Visits: 1,402
tonyf (6/11/2008)
Why do all these articles assume that the DBA can be trusted?


Trust has to be there and I believe most of the DBAs can be trusted.



Post #515229
Posted Wednesday, June 11, 2008 8:48 AM


SSChasing Mays

SSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing Mays

Group: General Forum Members
Last Login: Thursday, December 11, 2014 4:57 PM
Points: 615, Visits: 447
magarity kerns (6/11/2008)
What a great system! What are the requirements for the monitoring server and how many does yours monitor? Can it be done on the cheap with express or workgroup edition?


Ive done this on a couple systems, and you are limited by hdd size as the data grows. you will have trace files taking up space. and you will have data files growing as you collect data. You need to keep that in mind as you create a similar system, cause once the file space shrinks, no monitoring occurs... and then you are left with your pants down, so to speak. nothing like having to explain to an auditor why you have a gap in your data collection...

since you are running a server side trace, you will need to be able to fire off those procs to accomplish this. im not sure if these are available in express. to be honest, ive never used it. Maybe someone can answer that portion?

best suggestion that i can give you is to try it out on whatever system you can get your hands on. even housing this on a prod system is an option, if you have no other sql box to put it on. And as time goes, you'll see if it needs to be moved. moving it is fairly easy to do, as well.



Post #515242
Posted Wednesday, June 11, 2008 8:49 AM
Old Hand

Old HandOld HandOld HandOld HandOld HandOld HandOld HandOld Hand

Group: General Forum Members
Last Login: Thursday, May 8, 2014 10:08 PM
Points: 358, Visits: 397
tonyf (6/11/2008)
Why do all these articles assume that the DBA can be trusted?

Because the DBA knows that independent auditors will eventually catch up with him/her. Maybe not this audit cycle, but someday. Since the DBA's pay and bonuses are a lot less likely to be oriented to benefit cheating, unlike, say, a star sales rep, the DBA is among the least likely to be untrustworthy.
At some point there just isn't a next level of watchers to watch the watchers, so don't let the paranoia keep your organization from functioning.
Post #515243
Posted Wednesday, June 11, 2008 8:54 AM


SSChasing Mays

SSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing Mays

Group: General Forum Members
Last Login: Thursday, December 11, 2014 4:57 PM
Points: 615, Visits: 447
magarity kerns (6/11/2008)
tonyf (6/11/2008)
Why do all these articles assume that the DBA can be trusted?

Because the DBA knows that independent auditors will eventually catch up with him/her. Maybe not this audit cycle, but someday. Since the DBA's pay and bonuses are a lot less likely to be oriented to benefit cheating, unlike, say, a star sales rep, the DBA is among the least likely to be untrustworthy.
At some point there just isn't a next level of watchers to watch the watchers, so don't let the paranoia keep your organization from functioning.


great point. its what i have felt for a long time. I was so frustrated when the auditor told me that a system like this wouldnt help, cause i could edit the data. he said the same about a spreadsheet report, being that its not an acceptable form of data reporting, because its editable.
so i really got his goose one day when he asked for a screenshot (assumed the best form of verification). I went to my virus software, and did a screenshot of the dates of files, then edited them in my image software, putting the date a few hundred years in the future... and it blew his mind that that was no longer a valid and safe form of reporting...

it always comes back to trust. If i have something watching me, im more likely to be honest. the more monitoring that occurs, the better the higher ups will feel, and the auditors. and i am free to do my job, which i would do honestly in the first place...



Post #515247
Posted Wednesday, June 11, 2008 8:55 AM
Forum Newbie

Forum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum NewbieForum Newbie

Group: General Forum Members
Last Login: Monday, April 11, 2011 1:53 PM
Points: 1, Visits: 131
Great article!
Would you please post the code. It would save us a lot of time if you could post us the code




Post #515251
Posted Wednesday, June 11, 2008 8:58 AM


SSChasing Mays

SSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing Mays

Group: General Forum Members
Last Login: Thursday, December 11, 2014 4:57 PM
Points: 615, Visits: 447
minijogy (6/11/2008)
Great article!
Would you please post the code. It would save us a lot of time if you could post us the code



im not sure why the code isnt out there. Ive emailed SSC to see about adding it back in.
does anyone have a location i can upload it too, and provide a link for others to grab it from?



Post #515253
Posted Wednesday, June 11, 2008 9:03 AM


SSChasing Mays

SSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing Mays

Group: General Forum Members
Last Login: Thursday, December 11, 2014 4:57 PM
Points: 615, Visits: 447
here is a link i just created on my MSN Live Space. I tested it and it downloaded the file just fine.

Sql File

lemme know if this doesnt work.



Post #515258
Posted Wednesday, June 11, 2008 9:03 AM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: Administrators
Last Login: 2 days ago @ 3:11 PM
Points: 31,368, Visits: 15,837
Code has been added to the article.






Follow me on Twitter: @way0utwest

Forum Etiquette: How to post data/code on a forum to get the best help
Post #515260
Posted Wednesday, June 11, 2008 9:10 AM


SSChampion

SSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampion

Group: General Forum Members
Last Login: Thursday, December 18, 2014 8:26 AM
Points: 10,381, Visits: 13,436
Anirban Paul (6/11/2008)
tonyf (6/11/2008)
Why do all these articles assume that the DBA can be trusted?


Trust has to be there and I believe most of the DBAs can be trusted.


At some point you have to have trust in order to get any work done. Steve Jones has mentioned bonding for DBAs several times in his editorials just for this reason. This is also why we are usually subject to background checks and drug tests.




Jack Corbett

Applications Developer

Don't let the good be the enemy of the best. -- Paul Fleming

Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
How to Post Performance Problems
Crosstabs and Pivots or How to turn rows into columns Part 1
Crosstabs and Pivots or How to turn rows into columns Part 2
Post #515274
« Prev Topic | Next Topic »

Add to briefcase ««12345»»»

Permissions Expand / Collapse