An Important Rule:
If you’re trying to convince someone to your viewpoint, insulting them generally doesn’t work. If it does anything, it will be more likely to entrench them against your position. Therefore, this is something that IT professionals should avoid.
If You Write Your Own Software
or work… Read more
I use PowerShell a lot and I write about using it to solve problems quite frequently. The fact that I can extending Powershell by interfacing with the .NET Framework or making a COM/COM+ object call means I can do just about anything I need to do in order to… Read more
I’m a big fan of automation. I’ve been in IT for 27 years now. One unchanging rule during that time is there is always more to do than there is time to do it. Automation helps close that gap. And when I can automate something, I can do more than… Read more
At the Charlotte BI Group meeting last night, one of the questions I was asked after I gave my talk on Securing the ETL Pipeline was this:
“So you’re basically saying we should trust our DBAs?”
My response caught several people off guard:
“No, I’m saying to trust no one
Tomorrow, Tuesday, April 7, 2015, I’ll be speaking at the Charlotte BI user group. The meeting starts at 5:30 PM.
Here’s the info:
Topic: Securing the ETL Pipeline
We’re going to look at typical ETL (Extract, Transform, Load) pipelines and consider the weak points an attacker might… Read more
Warning: rant forthcoming.
I don’t get the women in technology problem. Oh, I understand and see the problem. I also understand and see the problem is primarily with men. I just don’t get why there is a problem.
Maybe the reason I don’t get the problem with women being our… Read more
It’s not usual for development projects to undergo an architecture review, but too many times these reviews consist only of developers. There are no server or network folks, much less any DBAs or security personnel. When I’ve brought this up to some of my developer friends, they wonder what the… Read more
March 4 – Charleston PASS, Charleston, SC
What Admins Absolutely Must Know About SQL Server Security
There are so many security tips out there for SQL Server. Almost all of them are rated as a best practice. What do you listen to? What do you focus on? In this… Read more
If you are running SQL Server 2014, please read the following:
The post above links to the following support article:
If you are relatively near to Charleston, SC, there’s a SQL Saturday there this weekend, December 13th!
The US government’s illogical screeds against better personal encryption for data and communications is well documented. Then comes this reported communication:
I’m hoping the quote given in the article is completely out of context. However, previous statements,… Read more
As a follow-up to my post on being at war, cyberwar:
If the experts are correct, this trend is only going to continue. Reading the article and others on the same situation, they all note that the unclassified email had been hacked, but not classified. That’s… Read more
In case you’ve not been following the news with regards to *government* breaches:
- White House computers hacked – Russia suspected
- US Postal Service hacked – China suspected
- NOAA hacked – China suspected
All three of these news articles released within the past few weeks. The reality is that our networks… Read more
If you’re looking to warm up for the winter, come on down to Charleston, SC, on December 13, 2014. Charleston will be hosting its second SQL Saturday. Why Charleston?
- Charleston continually wins the award for the friendliest city in the United States.
- Charleston isn’t far from 2014’s #2,…
I’ve stated quite often that being a generalist has generally been beneficial for my IT career (pun intended). That’s why I developed the professional development presentation, The Swiss Army Knife of DB Pros. It is also why I continue to bounce back and forth between technology areas rather than… Read more
I am consolidating my professional email accounts into one place. If you’ve previously contacted me using my linchpinpeople.com or either of my sqlpass.org email accounts, please use this instead:
I have been slow to respond at times to the other accounts, because I don’t check… Read more
If you’re not familiar with the Center for Internet Security, here’s the organization’s mission statement:
The Mission of the Center for Internet Security is to enhance the security readiness and response of public private sector entities, with a commitment to excellence through collaboration.
CIS produces consensus-based, best practice secure…
Here is my list of heroes for #TSQL2sday. None of them are directly tied to technology, much less SQL Server. However, all of them have made a deep impact on my life. I am where I am today because of these nine.
1. James Tiberius Kirk
I start my… Read more
Thank you for those who made it out to the SQL Server Innovators Guild last night in Greenville, SC. I hope you enjoyed the talk and that it’ll create conversations about how we better secure the ETL pipeline. With attacks against data becoming more and more prevalent, I only see… Read more
For those able to attend my session at this year’s Carolina Technology Conference, thank you! As promised, here are the slides, sample code, and audit scripts from my presentation on What You Absolutely Must Know about SQL Server Security: