The secret passwords we store in systems might be secure from discovery, but are they secure from use?  Read more...

Steve Jones wonders how many of us have had to send, or will have to send this email.  Read more...

DevOps is supposed to help us build better software, faster. Steve Jones looks at one of the other benefits: security.  Read more...

How to article on changing passwords for linked servers via TSQL and SSMS.  Read more...

This article outlines five SQL Server capabilities you can use to enhance your efficiency as a DBA.  Read more...

Many of our security issues come down to not patching software when there are updates available.  Read more...

This week Steve Jones looks at moving the port numbers of your instances for a bit of security.  Read more...

We need better security for our data, especially for our choices in managing data.  Read more...

Microsoft has introduced very impressive new security feature in SQL Server 2016 called Dynamic Data Masking (DDM).Dynamic Data Masking allow user to decide how much of the sensitive data to reveal with minimal impact on the application layer.   Read more...

Numbers are both very useful and also susceptible to all sorts of attacks when their domain is limited. Steve Jones looks at some issues occurring in today's world.  Read more...

Auditing is a weak point in SQL Server according to Steve Jones. He looks at a few of its flaws.  Read more...

Today Steve Jones looks at the loss of a database backup on a public website.  Read more...

Moving security changes between server instances can be a cumbersome process, but it doesn't need to be with the PowerShell cmdlet, Copy-SqlLogin.  Read more...

What happens if we can't access the Internet? We should be prepared, at home and work. Steve Jones has a few comments.  Read more...

Security is a complex process, one that is becoming more and more important to DBAs all the time. This week Steve Jones wants to know how security is handled for your service accounts.   Read more...

No matter what we do to secure our databases, we need to be sure our applications are well written, both with secure coding, but also good information handling.  Read more...

The potential vulnerabilities of wireless devices might be a security issue for databases.  Read more...

This week Steve Jones looks at a new idea, rating the security of products publicly to try and shame vendors into more secure coding.  Read more...

Today Steve Jones notes that back doors could be inserted into chips, which would be a huge problem.  Read more...

With AD Authentication via groups, SQL Server is vulnerable to orphaned Windows users' logins being added to SQL Server at a later date. This article gives an improved user audit script that detects orphaned DB Users and also a delete script.  Read more...