Three Operating System (Windows) patches due on Tuesday
Microsoft's advance security bulletin has come out and it looks like they are planning on releasing 3 security bulletins on...
2009-03-06
690 reads
Brian Kelley
- Interests: Chess, Reading, Soccer (Football), Baseball, Animals, Theology
Detecting When a Login Has Implicit Access to a Database
Yesterday I blogged about how to figure out what database principals corresponded to what server principals . The key is to match up the SIDs between sys.server_principals and sys.database_principals. But I also stated there were 3 cases where the logins...
2009-03-05
2,928 reads
Owning an Object in SQL Server 2005/2008
One of the things that we have to re-learn when going from SQL Server 2000 to 2005/2008 is that objects...
2009-03-04
6,663 reads
Mapping Database Principals to Server Principals
A question on the forum asked how to find all the database mappings for a particular login. If you're on SQL Server 2000 or below, the tables you want to use are syslogins in the master database and sysusers in each database.
2009-03-03
4,468 reads
You Must Trust Your DBAs
This is a follow-on post to You Must Trust Someone. My point in that post was to establish that being able to and and actually trusting your account and server administrators is a necessity. I didn't go into the business aspect of that, but basically it boils down to having a good selection process for candidates, checking out their references, ...
2009-03-03
2,022 reads
A Security Control Inconsistently Applied Is Not a Control
Some things and readings today reminded me of this: a security control inconsistently applied is not a control. The whole...
2009-02-27
2,821 reads
First Impressions of the Kindle 2
As I blogged about previously, I had decided to go ahead and pre-order the Kindle 2. It was slated for...
2009-02-27
1,542 reads
You Must Trust Someone
After some recent talks with security folks and auditors, one of the things I have had a hard time getting across is that you must trust those folks responsible for account and server management when it comes to securing your data. Yes, you can put in...
2009-02-26
2,549 reads
Determining if a Server Principal Owns Database Objects
This question comes up a lot in the forums: "How do I know if the login owns any objects?" Usually...
2009-02-24
7,422 reads
Excel Malformed File Vulnerability - Remote Code Execution
Today, Microsoft release a security advisory about a new vulnerability in Microsoft Excel. This one affects both PCs and Macs....
2009-02-24
1,808 reads
Blogs
How to Find Expensive Queries in Amazon Redshift
Slow-running queries can degrade your Redshift cluster’s performance and lead to increased costs. Identifying...
The Notification Trap: How Input Fatigue Is Killing Deep Work in Tech
By gbargsley
If you've been here before, you know this blog is usually about SQL Server,...
Designing a Storage Load Test for SQL Server
I’ve been doing storage load tests for SQL Server for a long time, both...
Forums
How Long is a Long I/O?
Comments posted to this topic are about the item How Long is a Long...
T-SQL Trigonometric Functions in SQL Server
Comments posted to this topic are about the item T-SQL Trigonometric Functions in SQL...
Half of All Engineers
Comments posted to this topic are about the item Half of All Engineers
Question of the Day
How Long is a Long I/O?
In SQL Server 2025, a long I/O is recorded in the error log with message 833. How long much an I/O request be outstanding before this message is written to the log?
See possible answers