SQL Server 2005 includes a number of new security enhancements to aid the DBA in managing their SQL Server. DDL triggers allow you to trap all kinds of DDL events that occur on your server. S. Srivathsani brings us a look at these new events.   Read more...

Although a few different options (Management Studio, system stored procedures, system views, custom scripts, etc.) exist to determine your permissions in SQL Server, in this tip we want to outline the functionality from the fn_my_permissions table valued function.   Read more...

Read more...

SQL Server 2005 has greatly changed the security paradigm for SQL Server DBAs. The sa account still exists, but for many tasks you can now avoid using it. New author Ken Johnson brings us some ides for properly securing this highly privileged account.   Read more...

Script one or all roles in a database. Includes users, obect permissions and column permissions.  Read more...

An upgrade to the Best Practices Analyzer from Microsoft is now available. Here's a blog post from the SQL CAT team.  Read more...

Part 2 of this article discusses how to hack/de-cipher the data that has been encrypted by passphrase.  Read more...

SQL Server 2005 provides four methods of encryption. Part one of this article covers encryption and decryption by passphrase.  Read more...

Greg Larsen discusses the different options available within SQL Server 2005 for managing security.  Read more...

Study encryption and hashing algorithm options for data security in SQL Server 2005 and use symmetric/asymmetric keys to encrypt and decrypt SQL Server data.  Read more...

Its a graphical representation of login creation in SQL Server 2005 for SQL Server Authentication Mode.  Read more...

Learn how to reorganize permissions in SQL Server 2005 in a multiple database environment.   Read more...

Read more...

SQL Server 2005 introduces the concept of schemas as opposed to object owners found in previous versions. This article will explain the differences between the two and, hopefully, clear up some of the confusion that still exists about schemas.  Read more...

Learn how to set up delegation on your SQL Server instances, so you can use the impersonate options when setting up the security properties of linked server definitions.  Read more...

One of the more interesting new features with SQL Server 2005 is the native encryption built into the product. Expert SQL crpytographer, Michael Coles, brings us a look at the symmetric keys in SQL Server 2005 and how they can be used to encrypt data and be secured by a certificate.   Read more...

Auditing is something that almost every DBA needs to tackle at some point in his or her career. David McKinney brings a new twist on the solution by using XML and XSL to help implement auditing in your SQL Server application.   Read more...

This article discusses: How SQL injection attacks work, Testing for vulnerabilities, Validating user input, Using .NET features to prevent attacks, Importance of handling exceptions  Read more...

SQL Server 2005 has added encryption capabilities to the platform, much to the delight of many DBAs. However setting up encryption can be confusing and difficult for most DBAs. New author Mike Good brings us a perspective from someone who is brand new to this set of features and has spent time working through the functions and documenting them for the rest of us.   Read more...

Improving SQL Server password management includes thorough password testing and securing SQL Server installations beyond the main database server.  Read more...