Brian Kelley

Brian Kelley is an author, columnist, and Microsoft SQL Server MVP focusing primarily on SQL Server security. He is a contributing author for How to Cheat at Securing SQL Server 2005 (Syngress), Professional SQL Server 2008 Administration (Wrox), and Introduction to SQL Server (Texas Publishing). Brian currently serves as an infrastructure and security architect. He has also served as a senior Microsoft SQL Server DBA, database architect, developer, and incident response team lead.

Interests: Chess, Reading, Soccer (Football), Baseball, Animals, Theology

A Security Control Inconsistently Applied Is Not a Control

by Brian Kelley

Databases – Infrastructure – Security

Some things and readings today reminded me of this: a security control inconsistently applied is not a control. The whole...

2009-02-27

2,819 reads

First Impressions of the Kindle 2

by Brian Kelley

Databases – Infrastructure – Security

As I blogged about previously, I had decided to go ahead and pre-order the Kindle 2. It was slated for...

2009-02-27

1,542 reads

You Must Trust Someone

by Brian Kelley

SQLServerCentral.com

Blogs

After some recent talks with security folks and auditors, one of the things I have had a hard time getting across is that you must trust those folks responsible for account and server management when it comes to securing your data. Yes, you can put in...

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

(1)

Log in or register to rate

You rated this post out of 5. Change rating

2009-02-26

2,549 reads

Discuss

Determining if a Server Principal Owns Database Objects

by Brian Kelley

Databases – Infrastructure – Security

This question comes up a lot in the forums: "How do I know if the login owns any objects?" Usually...

2009-02-24

7,420 reads

Excel Malformed File Vulnerability - Remote Code Execution

by Brian Kelley

Databases – Infrastructure – Security

Today, Microsoft release a security advisory about a new vulnerability in Microsoft Excel. This one affects both PCs and Macs....

2009-02-24

1,808 reads

Detecting When a Login Has Implicit Access to a Database

by Brian Kelley

Databases – Infrastructure – Security

Yesterday I blogged about how to figure out what database principals corresponded to what server principals. The key is to...

2009-02-23

1,874 reads

New Video Appearing on Front Page of JumpStart TV

by Brian Kelley

Databases – Infrastructure – Security

All of the videos I've done are up under my profile. However, the video for The difference between GRANT, DENY...

2009-02-23

1,498 reads

Mapping Database Principals to Server Principals

by Brian Kelley

Databases – Infrastructure – Security

A question on the forum asked how to find all the database mappings for a particular login. If you're on SQL...

2009-02-22

9,817 reads

Looking Forward to Getting My Kindle 2

by Brian Kelley

Databases – Infrastructure – Security

When the Kindle 2 was first announced, I debated about whether or not to get it. Then I realized I...

2009-02-21

1,369 reads

Adobe Acrobat/Reader 0day - Disable JavaScript

by Brian Kelley

Databases – Infrastructure – Security

There is an active attack in the wild for the newly announced Adobe Acrobat and Adobe Reader vulnerability. While the...

2009-02-20

2,065 reads

Blogs

“We love to debate minutiae”

By Brian Kelley

I am guilty as charged. The quote was in reference to how people argue...

Advice I Like: Knots

Learn how to tie a bowline knot. Practice in the dark. With one hand....

Shifting Mindsets: Why FinOps is Essential for Cloud Efficiency

As a DevOps practitioner, I’ve always focused on performance, scalability, and automation. But as...

Read the latest Blogs

Forums

how to write this query?

Hi everyone I asked this earlier but the desired outcome is a bit different...

Windows logins for users migrated from DomainA to DomainB

Hi, I have a SQL Server instance where users connect to via Windows Authentication,...

Multiple Deployment Processes

By Steve Jones - SSC Editor

Comments posted to this topic are about the item Multiple Deployment Processes

Visit the forum

Question of the Day

Upgrading Admin Queries

I have a query from a former DBA that we run on SQL Server 2025 to check on database metadata. This query references sys.sysaltfiles. I want to refactor this code to be more modern. Which DMV should I reference instead?

See possible answers