SQL Clone
SQLServerCentral is supported by Redgate
Log in  ::  Register  ::  Not logged in

I wrote a SQL Server auditing whitepaper!

I recently collaborated with Idera to produce a short whitepaper on the top 5 things to audit in SQL Server (database engine). You can grab it for free here (registration required):

Whitepaper: Top 5 Items to Audit in SQL Server

None of this is earth shattering. The whitepaper contains the the first set of things I look at when auditing the internal security of SQL Server. Part of what spurred this effort was a series of conversations I had with friends of mine who are internal auditors, developers, and system administrators who had been audited by an outside firm recently. The results provided by the outside auditors were less than satisfactory.

If you have an auditor come into your organization and he or she doesn’t cover these items, you probably aren’t getting your money’s worth. Really, these are the starting point and a good audit should cover much more. However, grab the whitepaper, audit yourself, and take care of the “low hanging fruit.”

Databases – Infrastructure – Security

Brian Kelley is an author, columnist, and Microsoft SQL Server MVP focusing primarily on SQL Server security. He is a contributing author for How to Cheat at Securing SQL Server 2005 (Syngress), Professional SQL Server 2008 Administration (Wrox), and Introduction to SQL Server (Texas Publishing). Brian currently serves as an infrastructure and security architect. He has also served as a senior Microsoft SQL Server DBA, database architect, developer, and incident response team lead.


Leave a comment on the original post [truthsolutions.wordpress.com, opens in a new window]

Loading comments...