SQLServerCentral.com Content tagged Blogs, Security

Backup a password, change it, then restore it.

Wed, 05 Jun 2013 06:00:00 UT

A couple of months ago I talked about moving a login from one server to another without the password. The...

Security Questions: Accessing SQL Server Securables

Tue, 04 Jun 2013 06:00:00 UT

As I mentioned in the introductory post, during the Introduction to SQL Server Security session for Pragmatic Work’sTraining on the T’s, I...

SQL Server security webinar series is coming soon!

Tue, 04 Jun 2013 06:00:00 UT

I've gotten in contact with most of the speakers who submitted SQL Server security talks for the PASS Summit. All...

Security Questions: Differences between “Grant” and “With Grant?”

Tue, 28 May 2013 06:00:00 UT

As I mentioned in the introductory post, in the Introduction to SQL Server Security session for Pragmatic Work’sTraining on the T’s, I...

CREATE SCHEMA can do what?!?!?

Tue, 21 May 2013 06:00:00 UT

So I was studying for the 70-451 and ended up reading the BOL entry for CREATE SCHEMA. I honestly can’t...

Getting the lowdown on 18456 errors

Tue, 30 Apr 2013 06:00:00 UT

If you can establish a connection to a SQL Server, but are having problems logging in to it, you will...

Security: People Are the Weakest Link

Fri, 05 Apr 2013 06:00:00 UT

There was an interesting conversation on Twitter today about security awareness and why the training so often fails. From my perspective, here's...

How do I move a SQL login from one server to another without the password?

Wed, 03 Apr 2013 06:00:00 UT

This is an uncommon task but one that does turn up every once in awhile. A SQL login has to...

Script to clean up “Windows” logins no longer in AD

Tue, 12 Mar 2013 06:00:00 UT

I was scanning http://dba.stackexchange.com and ran across the following question: http://dba.stackexchange.com/questions/31478/sql-server-script-to-delete-accounts-no-longer-in-active-directory Basically the OP wanted to know how to get rid of...

Granting Permission to Grant Permissions

Fri, 08 Feb 2013 07:00:00 UT

I’ve never felt the need to allow this, but I saw someone ask the questions recently. Suppose you had a...

The Principle of Least Privilege

Fri, 21 Dec 2012 07:00:00 UT

One of the tenets of good security is that no person or process is granted more rights than it needs...

You Need to Manage Passwords

Tue, 18 Dec 2012 07:00:00 UT

I saw a note this week from CNet about a system built to crack passwords (also on ArsTechnica). It reminded...

Logins vs Users

Wed, 12 Dec 2012 07:00:00 UT

Logins are not Users. It’s a pretty easy concept but one that seems to give a lot of people problems....

Microsoft Security Bulletin MS12-070 for SSRS

Mon, 15 Oct 2012 06:00:00 UT

Today is black Tuesday for October 2012. One security bulletin is specifically for a component of the SQL Server stack:...

Interesting Reading for September 18, 2012

Thu, 20 Sep 2012 06:00:00 UT

More stuff you may find interesting. Prepare for your first security breach. Sobering. As data professionals we’re going to get pulled...

SQL Server Guest User – Still a Serious Security Threat

Fri, 31 Aug 2012 06:00:00 UT

One of the security recommendation inside SQL Server Security Best Practice white paper for guest user is that, to disable...

Resources for Those Dealing with Security Patches

Fri, 24 Aug 2012 06:00:00 UT

It's been a while since I was in the day-to-day business of security patches. However, I still keep up with...

Stop Storing Unencrypted Passwords!

Mon, 30 Jul 2012 06:00:00 UT

I was called over today by a person doing application support to help troubleshoot a database connectivity issue. This isn't a...

Sorry, Mikko, the box was already open

Mon, 11 Jun 2012 06:00:00 UT

In a blog post F-Secure's Chief Research Officer, Mikko Hypponen (blog | twitter), indicated that with the US participating in cyberattacks...

Updated Thoughts on Antivirus on SQL Servers

Mon, 30 Apr 2012 06:00:00 UT

I hate running antivirus on SQL Servers. I agree antivirus is a necessary evil on most systems, but I don't...

Who are the sysadmins in this sql server?

Tue, 24 Apr 2012 06:00:00 UT

Here’s a quick query that you can run to find out the users with sysadmin fixed server role. Sysadmins have a...

USB/Flash Drive Security

Wed, 15 Feb 2012 07:00:00 UT

Gone are the days when remote drives were easy to detect because there was some size to them. Nowadays USB...

Top 5 hard-earned Lessons of a DBA
New! Part 4, ‘Disturbing Development’ by Grant Fritchey, features the return of Joe Deebeeay and a server-threatening encounter with ORMs - read it here

Slammer, Alive…Barely

Mon, 30 Jan 2012 07:00:00 UT

Slammer By now you must have heard of the SQL Slammer worm. It was quite an infectious little nuisance. The harm...

Public Role and Security

Thu, 29 Dec 2011 07:00:00 UT

Having flown a fair amount lately, I was thinking about the various levels of security within an airport. Part of...

SQL University: SQL Server Security Architecture - 3rd Party, Some Options

Fri, 11 Feb 2011 07:00:00 UT

Day 3 of Security Week at SQL University is now in session. You're implementing a third party solution and you...

SQL University: Architecting SQL Server Security, the Big Picture

Tue, 08 Feb 2011 07:00:00 UT

Welcome to this semester's security week at SQL University. In previous semesters we've covered the technical aspects of SQL Server...

Facebook and E-Mail Security for a New Teenager

Fri, 10 Dec 2010 07:00:00 UT

Cross-posted from a Goal Keeping DBA blog: Just recently, my oldest son entered the ranks of the teenagers. I shouldn’t actually...

How Do I Change SSRS Report Credentials with Powershell?

Fri, 03 Dec 2010 07:00:00 UT

Today’s script took a long time to write. The concepts are fairly simple and the resulting script is quite trivial...

Why You Should Vote for My SQLRally Pre-Con

Mon, 01 Nov 2010 06:00:00 UT

Self-marketing is not my strong suit. I don't feel very comfortable doing it, but Andy Warren (twitter | blog) suggests that we...

Vote for Me for a PASS SQLRally Precon on SQL Server Security

Thu, 28 Oct 2010 06:00:00 UT

Unless James Bond is in the picture, security is usually not a sexy topic. However, we all lament the lack...

Compare and sync databases with SQL Compare
“SQL Compare is fast, extremely easy to use, full-featured and affordable. I wouldn't bother messing around with anything else.” Adam Machanic, SQL Server MVP. Download a 14-day free trial.