|
|
|
SSC Rookie
 
Group: General Forum Members
Last Login: Friday, December 04, 2009 6:29 AM
Points: 27,
Visits: 72
|
|
Hi DBAs,
I have been contracted in to look after a set of databases. Basically, I am an Oracle DBA ended up in looking after few SQL Server databases as well.
I had a look at the server and most of the servers are on different versions
For Example one of the server is on,
9.00.3077.00 SP2 Standard Edition
I read some SQL web sites on SP3 but I am not sure whether I can go directly there, I am thinking of patching to make it more secure. Could you please advise what steps I should follow from here.
I had a look at http://www.sqlsecurity.com to find out details on patches and couldn't see my version at all there.
Your help is very much appreciated. If you could give me a step by step procedure for this one, I can then easily patch the rest of my DBs.
Thanks a lot for your help.
Philip
|
|
|
|
|
Ten Centuries
Group: General Forum Members
Last Login: 2 days ago @ 2:25 PM
Points: 1,106,
Visits: 801
|
|
|
|
|
|
SSC Rookie
Group: General Forum Members
Last Login: Friday, December 04, 2009 6:29 AM
Points: 27,
Visits: 72
|
|
I have gone through the link you've posted. Even after reading the doucment I'm not clear on the exact step to perform in order to apply the patches.
Can i take the latest patch (Version 11) and apply it on top of the version I've.
I am using windows 2003.
Thanks,
Philip
|
|
|
|
|
Ten Centuries
Group: General Forum Members
Last Login: 2 days ago @ 2:25 PM
Points: 1,106,
Visits: 801
|
|
Step 1. Patch Dev - backup databases, patch, have developers test
Step 2. Patch QA / Int - backup databases, patch, have testers test
Step 3. Patch Prod / DR - backup databases, patch, have testers test
You can apply CU 11 (CU 12 is the most recent) or you could apply SP3 and then CU 11 and 12. CU's are usually hot fixes that microsoft puts out for any known SQL bugs. These are usually applied if you encounter those bugs in your environment and not simply because they are out there.
To secure your environment you will want to make sure you have patched it for any security vulnerabilities that Microsoft releases patches for on a monthly basis. You can read more about those on the microsoft website http://www.microsoft.com/technet/security/current.aspx
The key to all of the above is TESTING.
|
|
|
|
|
SSC Rookie
Group: General Forum Members
Last Login: Friday, December 04, 2009 6:29 AM
Points: 27,
Visits: 72
|
|
Dear All,
Thanks SA.
When I ran the following SQL on my DB server,
select SERVERPROPERTY('productversion'), SERVERPROPERTY('productlevel'), SERVERPROPERTY('edition')
Result is,
9.00.3077.00 SP2 Standard Edition
Then ran select @@version the result is,
Microsoft SQL Server 2005 - 9.00.3077.00 (Intel X86) Dec 17 2008 15:19:45 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
If I follow the following URL,
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=5dfb7998-0316-40e5-9fc5-7a1afc18e15e
I can see my version number in it with Date Published: 2/10/2009.
I didn't apply any patches this year at all. It might have been updated automatically. Do you recommend automatic updates on SQL Server DB's? How to enable or disable automatic updates or is it get applied as part of the Windows Update or Microsoft Updates?
As I can see on the updates on my server the last entry is
GDR 3077 for SQL Server Database SErvices 2005 ENU (KB960089) installed on 28/02/2009. The same for Integration Services, Notification Services, Tools and Workstation Components, Analysis Services, Reporting Services.
The one entry before these entry is KB921896 which is dated 02/08/2007.
Any help is appreciated in guiding me in the right track in terms of SQL Server patching as I could see lots of MS articles and is bit confusing. Btw, How do I get notified on new patches other than keep visiting the sites or the site mentioned by SA?
What is the best way forward for me on patching my SQL Server DB's going forward?
Thanks,
Philip
|
|
|
|
|
Ten Centuries
Group: General Forum Members
Last Login: 2 days ago @ 2:25 PM
Points: 1,106,
Visits: 801
|
|
You can register for receiving emails from Microsoft regarding security updates. You can get more information about how to at http://www.microsoft.com/technet/security/Current.aspx
As far as patching / updating the servers is concerned, I don't recommend automatic patching simply because not all may be required for your environment. The way to go would be to keep track of when these patches / updates / service packs are released and plan to roll them out only if necessary to your environment. These should be rolled out incrementally starting from the Dev to the Production and all environments in between.
Make sure you do your testing and also involve the developers in the testing while rolling these out.
HTH
|
|
|
|
|
SSC Rookie
Group: General Forum Members
Last Login: Friday, December 04, 2009 6:29 AM
Points: 27,
Visits: 72
|
|
My question here is why I'm getting different details,
In the control pannel-->Add Remove Programs with updates,
GDR 3077 for SQL Server Database SErvices 2005 ENU (KB960089) installed on 28/02/2009. The same for Integration Services, Notification Services, Tools and Workstation Components, Analysis Services, Reporting Services.
but getting Dec 17 2008 as the last patched date when I do a select @@version
Microsoft SQL Server 2005 - 9.00.3077.00 (Intel X86) Dec 17 2008 15:19:45 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
Thanks,
Philip
|
|
|
|
|
SSC Rookie
Group: General Forum Members
Last Login: Friday, December 04, 2009 6:29 AM
Points: 27,
Visits: 72
|
|
Hi All,
In this case which cumulative update I should try next? Will it be ok, if I skip all the CU's and go ahead with SP3?
Thanks,
Philip.
|
|
|
|
|
Ten Centuries
Group: General Forum Members
Last Login: 2 days ago @ 2:25 PM
Points: 1,106,
Visits: 801
|
|
| I would upgrade to SP3 since it includes all hotfixes up to CU 10.
|
|
|
|
