SQL Injection - Why I Don't Think Parameterization is Enough
Note:Since there have been several comments on this, I'm using parameterization at the application layer in the security sense of...
2009-05-15
2,706 reads
Databases – Infrastructure – Security
Rant: Is It an Effective Control or Not?
This is spurred on by a comment a pen tester made. He was referring to a particular technology and said...
2009-05-05
1,248 reads
A Dead Zune and Choices
Shortly after the Zune debuted, I purchased one. And I've been happy with it. It's done everything I expected out...
2009-05-04
859 reads
New Community Resource for IT Pros - Server Fault
Not too long ago the developer community got a fantastic resource called Stack Overflow. It's a question and answer site,...
2009-05-01
1,060 reads
Speaking / Teaching Engagements in May
May 21
I will be teaching a half day course on SQL Server security and auditing for the Midlands Chapter of...
2009-04-30
1,522 reads
Midlands PASS May Meeting
The Midlands PASS Chapter will be meeting next Thursday night, May 7, at Training Concepts. We have the privilege of welcoming...
2009-04-30
1,413 reads
The #1 Secret to Building Your Skill Set is...
Self-Discipline
Yes, I've said it: self-discipline.
I'm reading a book called Disciplines of a Godly Man by R. Kent Hughes. Now...
2009-04-29
1,979 reads
Security Basics: Defense-in-Depth
In my security presentations, another basic I talk about is defense-in-depth. The idea here is to produce multiple layers of...
2009-04-28
4,237 reads
SQL Quiz 4: Leadership
I'm finally getting around to answering this one originated by Chris Shaw (@SQLShaw), as I was tagged by Jack Corbett...
2009-04-27
729 reads
Patterns & Practices SIG starting up in Columbia, SC
C# MVP Chris Eargle (@kodefuguru on Twitter), who is also an INETA community champion and president of the Columbia Enterprise...
2009-04-24
1,006 reads
Blogs
Cost Visibility: Tracking and Analysing Your Cloud Spend
By HeyMo0sh
One of the biggest challenges I’ve faced in cloud operations is maintaining clear visibility...
Whiling away an afternoon, thinking
By Steve Jones
I come to Heathrow often. Today is likely somewhere close to 60 trips to...
Black Box vs. Gray Box vs. White Box Testing
By Brian Kelley
If your organization is spending money, then meaningful results are a must. Pen testing...
Forums
Restoring On Top II
Comments posted to this topic are about the item Restoring On Top II
SQL Art 2: St Patrick’s Day in SSMS (Shamrock + Pint + Pixel Text)
Comments posted to this topic are about the item SQL Art 2: St Patrick’s...
Breaking Down Your Work
Comments posted to this topic are about the item Breaking Down Your Work
Question of the Day
Restoring On Top II
I have a database, DNRTest, that has a number of tables and other objects in it. The other day, I was trying to mock up a test and ran this code on the same server:
-- run yesterday CREATE DATABASE DNRTest2 GO USE DNRTest2 GO CREATE TABLE NewTable (id INT) GOToday, I realize that I need a copy of DNRTest for another mockup, and I run this:
-- run today USE Master BACKUP DATABASE DNRTest TO DISK = 'dnrtest.bak' GO RESTORE DATABASE DNRTest2 FROM DISK = 'dnrtest.bak' WITH REPLACEWhat happens? See possible answers