SQL Injection isn't special code. It consists of regular, valid T-SQL that is unexpected by the application. Steve Jones notes that using the principle of least privilege can help to limit the damage from SQL Injection if the application fails to properly check input.
2015-12-28 (first published: 2011-04-12)
600 reads
Steve Jones talks about the possibility of SQL Injection, or other security issues from malformed input, affecting our lives in new and annoying ways.
2011-04-11
586 reads
Quite a few utility companies and energy producers have ha data breeches in the last year, yet most of them don't have good tools to detect the intrusions or the support of executive management. Steve Jones talks about this being a problem in many companies.
2011-04-11
98 reads
This Friday Steve Jones asks what you would like to see in Standard Edition. Is there one feature that would make a big difference to you?
2011-04-08
127 reads
If the future of out IT works involves more ad hoc, swarming project teams, are you prepared? Steve Jones talks about social networking being something you might consider as a way to build some skills to work with others in a less formal way.
2011-04-07
108 reads
We never know enough ourselves to be sure that we have completely thought through all the scenarios or holes in our logic. This is why it makes sense for us to have a group that spends time looking for problems.
2011-04-06
196 reads
Today Steve Jones asks for your ideas on Microsoft's Connect. It's a good way to submit bugs and suggestions, but it seems to suffer from a scale problem. What do you think would help?
2011-04-05
157 reads
Any DBA who has been bitten by these subtle data integrity issues, or reports that erratically produce the wrong results, will know how much careful testing is involved in mitigating them.
2011-04-04
274 reads
What value can you place on data? It can be hard to determine, especially when so many sites on the Internet want data to be free. However the New York Times is going to a subscription model, with the idea that there is some value to their data and people will pay for it.
2011-04-04
105 reads
Today Steve Jones talks about changes that are coming to SQLServerCentral.
2011-04-01
201 reads
By HeyMo0sh
As a DevOps professional, I’ve seen firsthand how cloud costs can quickly spiral out...
By Steve Jones
AI is everywhere. It’s in the news, it’s being added to every product, management...
By Vinay Thakur
RAG — Retrieval Augmented Generation. we have covered so far — embeddings, vectors, vector...
Hi, ssms is free here. I can think of other reasons to do this...
I've written some documentation on using different Markdown types of files on GitHub. It's...
Comments posted to this topic are about the item Not Just an Upgrade
I am doing development work on a database and want to keep a backup so I can reset my database. I make some changes and want to restore over top of my changes. When I run this code, what happens?
USE Master BACKUP DATABASE DNRTest TO DISK = 'dnrtest.bak' GO USE DNRTest GO CREATE TABLE MyTest(myid INT) GO USE master RESTORE DATABASE DNRTest FROM DISK = 'dnrtest.bak' WITH REPLACESee possible answers