As we mentioned before, Brian will be writing a column covering all facets of security. Turns out that there is so much to cover, he has agreed to write two columns per month! This article talks about the principle least privilege, why it doesn't always work, and some good info about removing the Builtin\Admin account.
2003-06-27
21,143 reads
2003-06-13
5,960 reads
Test to see how much you know about SQL Server security. If you're one of the members to pass the test (72% score or higher), you're entered into a contest to win a copy of AppDetective and one year's worth of support (over $1500 value)! You can only take the test question test once and it is not timed. After the test, you'll be given the answers and why one answer is more correct than another. Questions are randomly chosen from a pool.
2003-05-22
341 reads
Brian will be writing a monthly column for us on SQL Security, definitely a hot topic these days! He starts off by discussing the need for a built in db_executor role and how to grant permissions manually to achieve the same effect. Terrific concept, as granting table access can lead to bad things! If there is a security topic you'd like to see more info on, post a note to the article or email us at articles@sqlservercentral.com.
2003-05-16
41,288 reads
SecureWave forwarded us this link to some info about their product - they claim to be the only product capable of protecting SQL Server from buffer overflow attacks. You can download a free eval from their site. We have not reviewed this product.
2003-04-29
1,001 reads
Securing your SQL Server can be an arduous task, but very rewarding. This article covers 10 steps to properly protecting your data.
2007-09-22 (first published: 2003-04-03)
45,687 reads
How safe are your SQL passwords? Use these free tools to find out how secure your passwords are and generate more secure passwords.
2002-12-10
7,408 reads
You're behind a firewall, you have passwords. Why spend any great amount of time on extra database security? Steve thinks there are a few reasons why in this article.
2002-11-04
4,489 reads
NGSSoftware have released NGSSQuirreL, a security audit and management tool for SQL Server. Designed to ease the administrative burden of securing SQL Server, NGSSQuirreL finds the security holes then generates a lockdown script based upon the vulnerabilities found so the server can be secured in a matter of minutes; and regular audits can help keep it that way. For more information or an evaluation copy please see the NGSSite - http://www.nextgenss.com/.
2002-09-11
464 reads
An interesting research paper by David Litchfield on how an attacker might go about attacking your server. Definitely worth a read.
2002-09-06
532 reads
By Steve Jones
Superheroes and saints never make art. Only imperfect beings can make art because art...
One feature that I have been waiting for years! The new announcement around optimize...
Following on from my last post about Getting Started With KubeVirt & SQL Server,...
Comments posted to this topic are about the item The AI Bubble and the...
Hi, in a simple oledb source->derived column->oledb destination data flow, 2 of my...
hi, i noticed the sqlhealth extended event is on by default , and it...
I am currently working with Sql Server 2022 and AdventureWorks database. First of all, let's set the "Read Committed Snapshot" to ON:
use master; go alter database AdventureWorks set read_committed_snapshot on with no_wait; goThen, from Session 1, I execute the following code:
--Session 1 use AdventureWorks; go create table ##t1 (id int, f1 varchar(10)); go insert into ##t1 values (1, 'A');From another session, called Session 2, I open a transaction and execute the following update:
--Session 2 use AdventureWorks; go begin tran; update ##t1 set f1 = 'B' where id = 1;Now, going back to Session 1, what happens if I execute this statement?
--Session 1 select f1 from ##t1 where id = 1;See possible answers