Brian Kelley

Brian Kelley is an author, columnist, and Microsoft SQL Server MVP focusing primarily on SQL Server security. He is a contributing author for How to Cheat at Securing SQL Server 2005 (Syngress), Professional SQL Server 2008 Administration (Wrox), and Introduction to SQL Server (Texas Publishing). Brian currently serves as an infrastructure and security architect. He has also served as a senior Microsoft SQL Server DBA, database architect, developer, and incident response team lead.

Interests: Chess, Reading, Soccer (Football), Baseball, Animals, Theology

Should DBAs have local administrator rights?

by Brian Kelley

Databases – Infrastructure – Security

This was actually spurred by a post from Ted Krueger (@onpnt), which led to a short, but hearty, discussion on...

2009-11-20

14,005 reads

Why We Recommend Against xp_cmdshell

by Brian Kelley

Databases – Infrastructure – Security

Every so often I see a post in a forum or on Twitter about the use of xp_cmdshell. Usually it is someone looking for...

2009-11-13

21,109 reads

SQL Server Wish: Last Logon Information

by Brian Kelley

Databases – Infrastructure – Security

The other day my wife and I were driving around and noticed that a Little Caesar's location had shown up...

2009-11-10

8,734 reads

Always Striving to Improve

by Brian Kelley

Databases – Infrastructure – Security

I'm enjoying a relaxing Saturday morning and I'm doing a bit of reading on ESPN. I see the article about...

2009-11-07

862 reads

OFF-TOPIC: Surviving, Missing Folks, Glad I'm Home

by Brian Kelley

Databases – Infrastructure – Security

I certainly wish circumstances were different and I would have been able to attend the PASS Summit this week. I...

2009-11-06

731 reads

Not Attending/Presenting at SQL Connections

by Brian Kelley

Databases – Infrastructure – Security

Given everything that has happened in the last couple of weeks, this is not surprising to those who have kept...

2009-10-31

1,378 reads

OFF-TOPIC: God is Still Good, Even as We Mourn

by Brian Kelley

Databases – Infrastructure – Security

Kimberly and I went to the high risk doctor's office this morning for the ultrasound. Unfortunately, they realized very quickly...

2009-10-30

1,916 reads

OFF-TOPIC: More about the pregnancy

by Brian Kelley

Databases – Infrastructure – Security

Quite a few folks have commented about my previous post about missing the PASS Summit, whether publicly or in private....

2009-10-29

889 reads

SQL University: Multiple Paths and Ownership Chaining

by Brian Kelley

Databases – Infrastructure – Security

Welcome back to our last class this term on security in SQL Server here at SQL University. According to the syllabus,...

2009-10-29

2,669 reads

SQL University: Diving into Authorization

by Brian Kelley

Databases – Infrastructure – Security

It's good to see all your bright and chipper faces here at SQL University. Hopefully you've digest Monday's lesson on...

2009-10-27

6,139 reads

Blogs

The Book of Redgate: Spread across the world

This was Redgate in 2010, spread across the globe. First the EU/US Here’s Asia...

Merry Christmas

Today is Christmas and while I do not expect anybody to actual be reading...

Self-Hosting a Photo Server the Whole Family Can Use

Until recently, my family's 90,000+ photos have been hidden away in the depths of...

Read the latest Blogs

Forums

Happy Holidays, Let's Do Nerdy Stuff

By Grant Fritchey

Comments posted to this topic are about the item Happy Holidays, Let's Do Nerdy...

UNISTR Escape

By Steve Jones - SSC Editor

Comments posted to this topic are about the item UNISTR Escape

Celebrating Tomorrow

By Steve Jones - SSC Editor

Comments posted to this topic are about the item Celebrating Tomorrow

Visit the forum

Question of the Day

UNISTR Escape

In SQL Server 2025, I run this command:

SELECT UNISTR('*3041*308A*304C\3068 and good night', '*') as "A Classic";

What is returned? (assume the database has an appropriate collation) A:

B:

C:

See possible answers