Why Secure the Database?
You're behind a firewall, you have passwords. Why spend any great amount of time on extra database security? Steve thinks there are a few reasons why in this article.
2002-11-04
4,490 reads
Security
NGSSQuirreL Released.
NGSSoftware have released NGSSQuirreL, a security audit and management tool for SQL Server. Designed to ease the administrative burden of securing SQL Server, NGSSQuirreL finds the security holes then generates a lockdown script based upon the vulnerabilities found so the server can be secured in a matter of minutes; and regular audits can help keep it that way. For more information or an evaluation copy please see the NGSSite - http://www.nextgenss.com/.
2002-09-11
464 reads
Threat Profiling SQL Server
An interesting research paper by David Litchfield on how an attacker might go about attacking your server. Definitely worth a read.
2002-09-06
532 reads
Security Update for SQL Server SP2
Microsoft has release a cumulative security update for SQL Server with SP2. Read , download and update your SQL Server!
2002-07-25
3,912 reads
SQLServerCentral.com Launches SQL Server Security Analzyer
SQLServerCentral.com launched its first online free software, which can evaluate your SQL Server remotely and look for SQL Server security vulnerabilities. This free service looks for weak or no passwords and does a basic penetration test online.
2002-06-13
57 reads
Auditing Your SQL Server Environment Part II Auditing Your SQL Server
In this article by Randy Dyess he shares with you the script on how he audits his environment and outputs reports of the permissions that users have.
2002-05-30
9,911 reads
SQLsnake Worm Hits SQL Servers and Networks Hard
If you haven't changed the SA password on your SQL Server, you may be soon paying the price. Beginning last week, an old worm has come back in full force, infecting about 100 SQL Servers an hour. Reports of heavy port 1433 scanning began in early may but by the 22nd, the virus really began to take its hold on systems with no SA password.
2002-05-28
4,814 reads
SQL Security Resource Center Opens
SQLServerCentral.com is proud to launch it's first Resource Center for security. It's a one-stop shop for anything related to SQL Server security. All content is user-contributed and contains links to content throughout the web.
2002-05-20
78 reads
SQL Server Security Resources
As I work with a particular topic or problem, I often research on the Internet different opinions, white papers, etc. Here is a list of resources that are located both on SQLServerCentral.com and other sites that I have found useful.
2002-04-08
5,536 reads
Auditing Your SQL Server Environment Part I
Ever been placed into a new environment and couldn't
find an ounce of documentation? This article is the first in a series that will help you make an audit of your new environment
and determine if any SQL Server login does not have a password, has a password the same as the login name or a password that is only one character long.
2002-04-02
10,441 reads
Blogs
Are you getting value from your reporting?
By ChrisJenkins
Do you spend so long manipulating your data into something vaguely useful that you...
The Book of Redgate: SQL Server Central
By Steve Jones
It was neat to stumble on this in the book, a piece by me,...
Git forked
Forgive me for the title. Mentally I’m 12. When I started my current day...
Forums
Microsoft Security Changes and SQL Server
Comments posted to this topic are about the item Microsoft Security Changes and SQL...
Expanding into Print
Comments posted to this topic are about the item Expanding into Print
Downtime Caused by the Postgres Transaction ID Wraparound Problem
Comments posted to this topic are about the item Downtime Caused by the Postgres...
Question of the Day
The String Distance I
In SQL Server 2025, what is returned by this code:
SELECT EDIT_DISTANCE('Steve', 'Stan')
Assume preview features are enabled. See possible answers