SQLServerCentral.com Content tagged SQL Server 2005

SQLServerCentral.com Content tagged SQL Server 2005 - Securityhttp://www.sqlservercentral.com/Content tagged SQL Server 2005 - Security posted on SQLServerCentral.comen-us360sjones@sqlservercentral.com (Steve Jones)SQL Server 2005 LoginsSecurity was a major focus of SQL Server 2005 during its development, both in terms of making the product secure as well as enhancing the options. Security expert Brian Kelley brings us a look at how the paradigm of logins has changed and what you need to look for in SQL Server 2005. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sqlserver2005logins/2474/2008/04/11http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sqlserver2005logins/2474/Understanding DDL Triggers in SQL Server 2005SQL Server 2005 includes a number of new security enhancements to aid the DBA in managing their SQL Server. DDL triggers allow you to trap all kinds of DDL events that occur on your server. S. Srivathsani brings us a look at these new events. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2927/2008/03/17http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2927/Securing the SA Account in SQL Server 2005SQL Server 2005 has greatly changed the security paradigm for SQL Server DBAs. The sa account still exists, but for many tasks you can now avoid using it. New author Ken Johnson brings us some ides for properly securing this highly privileged account. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2873/2008/02/20http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2873/Setting Up Delegation for Linked ServersLearn how to set up delegation on your SQL Server instances, so you can use the impersonate options when setting up the security properties of linked server definitions.http://www.sqlservercentral.com/redirect/articles/3221/2007/09/11http://www.sqlservercentral.com/redirect/articles/3221/SQL 2005 Symmetric EncryptionOne of the more interesting new features with SQL Server 2005 is the native encryption built into the product. Expert SQL crpytographer, Michael Coles, brings us a look at the symmetric keys in SQL Server 2005 and how they can be used to encrypt data and be secured by a certificate. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sql2005symmetricencryption/2291/2007/08/24http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sql2005symmetricencryption/2291/Data Security: Stop SQL Injection Attacks Before They Stop YouThis article discusses: How SQL injection attacks work, Testing for vulnerabilities, Validating user input, Using .NET features to prevent attacks, Importance of handling exceptionshttp://www.sqlservercentral.com/redirect/articles/3145/2007/08/09http://www.sqlservercentral.com/redirect/articles/3145/A Simple Approach to SQL Server 2005 EncryptionSQL Server 2005 has added encryption capabilities to the platform, much to the delight of many DBAs. However setting up encryption can be confusing and difficult for most DBAs. New author Mike Good brings us a perspective from someone who is brand new to this set of features and has spent time working through the functions and documenting them for the rest of us. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/3058/2007/08/02http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/3058/SQL Server Password Management:Improving SQL Server password management includes thorough password testing and securing SQL Server installations beyond the main database server.http://www.sqlservercentral.com/redirect/articles/3113/2007/07/31http://www.sqlservercentral.com/redirect/articles/3113/You have just removed the builtin/Administrators group from...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61089/2007/07/23http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61089/Temporarily Changing an Unknown Password of the sa Account You are asked for the sa password for a SQL Server in order to perform a software upgrade. You, the DBA, don't know the password and it's not documented. Rodney Landrum provides a way out of this dilemma, demonstrating two techniques for temporarily changing the password, and then returning it to its previous unknown value.http://www.sqlservercentral.com/redirect/articles/3107/2007/07/18http://www.sqlservercentral.com/redirect/articles/3107/Scripting permissions using catalog views in SQL Server 2005A nice How-To from one of the most respected SQL Server MVPs.http://www.sqlservercentral.com/redirect/articles/3086/2007/07/13http://www.sqlservercentral.com/redirect/articles/3086/Stop SQL Injection Attacks Before They Stop YouThis article discusses: How SQL injection attacks work, Testing for vulnerabilities, Validating user input, and more.http://www.sqlservercentral.com/redirect/articles/3073/2007/07/09http://www.sqlservercentral.com/redirect/articles/3073/Understanding DDL Triggers in SQL Server 2005SQL Server 2005 includes a number of new security enhancements to aid the DBA in managing their SQL Server. DDL triggers allow you to trap all kinds of DDL events that occur on your server. S. Srivathsani brings us a look at these new events. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2927/2008/03/17http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2927/The SQLCLR permission sets are actually enforced via...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61066/2007/06/26http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61066/What is the strongest level of encryption you...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61051/2007/06/12http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61051/Which fixed database roles can execute the BACKUP...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61054/2007/06/11http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61054/In SQL Server 2005, how can you create...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61050/2007/06/07http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61050/SQL 2005 Symmetric EncryptionOne of the more interesting new features with SQL Server 2005 is the native encryption built into the product. Expert SQL crpytographer, Michael Coles, brings us a look at the symmetric keys in SQL Server 2005 and how they can be used to encrypt data and be secured by a certificate. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sql2005symmetricencryption/2291/2007/08/24http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/sql2005symmetricencryption/2291/Which key does the OPEN MASTER KEY statement...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61014/2007/04/17http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61014/In SQL Server 2005, what permissions does a...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61007/2007/04/12http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61007/What rights does a user need to perform...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61006/2007/04/06http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61006/You have upgraded your SQL Server 2000 on...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61002/2007/03/29http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/61002/Securing the SA Account in SQL Server 2005SQL Server 2005 has greatly changed the security paradigm for SQL Server DBAs. The sa account still exists, but for many tasks you can now avoid using it. New author Ken Johnson brings us some ides for properly securing this highly privileged account. http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2873/2008/02/20http://www.sqlservercentral.com/articles/SQL+Server+2005+-+Security/2873/You wish to prevent anyone from using the...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60989/2007/03/13http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60989/Which of these is not a parameter you...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60982/2007/03/06http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60982/Which permission in SQL Server 2005 allows you...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60980/2007/02/28http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60980/Hacking SQL ServerIn this presentation at the Jacksonville SQL Server Users Group, Bayer White playS the part of a developer protecting his application and Brian Knight attempts to hack his application using SQL Injection and cross-site scripting. Then, Bayer will show you how to protect yourself from the hacker and then Brian tries again. Back and forth the chess match goes until someone wins! http://www.sqlservercentral.com/redirect/articles/2852/2007/02/12http://www.sqlservercentral.com/redirect/articles/2852/What does the function ORIGINAL_LOGIN return in SQL...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60957/2007/01/31http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60957/What does HAS_DBACCESS() do?http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60958/2007/01/23http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60958/When a user on a remote SQL Server...http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60938/2007/01/10http://www.sqlservercentral.com/questions/SQL+Server+2005+-+Security/60938/