Mary is a member of a SQL Server...

SQL Server Security: Security Admins

As we mentioned before, Brian will be writing a column covering all facets of security. Turns out that there is so much to cover, he has agreed to write two columns per month! This article talks about the principle least privilege, why it doesn't always work, and some good info about removing the Builtin\Admin account.

What UDP port does SQL Server listen on?...

Test Your SQL Server Security Skills and Compete with your Friends!

Test to see how much you know about SQL Server security. If you're one of the members to pass the test (72% score or higher), you're entered into a contest to win a copy of AppDetective and one year's worth of support (over $1500 value)! You can only take the test question test once and it is not timed. After the test, you'll be given the answers and why one answer is more correct than another. Questions are randomly chosen from a pool.

SQL Server Security: The db_executor Role

Brian will be writing a monthly column for us on SQL Security, definitely a hot topic these days! He starts off by discussing the need for a built in db_executor role and how to grant permissions manually to achieve the same effect. Terrific concept, as granting table access can lead to bad things! If there is a security topic you'd like to see more info on, post a note to the article or email us at articles@sqlservercentral.com.

SecureWave's SecureStack 3.0 Release

SecureWave forwarded us this link to some info about their product - they claim to be the only product capable of protecting SQL Server from buffer overflow attacks. You can download a free eval from their site. We have not reviewed this product.

10 Steps to Securing your SQL Server

Securing your SQL Server can be an arduous task, but very rewarding. This article covers 10 steps to properly protecting your data.

How Safe are Your Passwords?

How safe are your SQL passwords? Use these free tools to find out how secure your passwords are and generate more secure passwords.

Why Secure the Database?

You're behind a firewall, you have passwords. Why spend any great amount of time on extra database security? Steve thinks there are a few reasons why in this article.

NGSSQuirreL Released.

NGSSoftware have released NGSSQuirreL, a security audit and management tool for SQL Server. Designed to ease the administrative burden of securing SQL Server, NGSSQuirreL finds the security holes then generates a lockdown script based upon the vulnerabilities found so the server can be secured in a matter of minutes; and regular audits can help keep it that way. For more information or an evaluation copy please see the NGSSite - http://www.nextgenss.com/.