August 5, 2020 at 3:39 pm
Has anyone used Brain Box SQL app for Android in the google play store?
What do you think?
I've been using it to connect remotely to my SQL Servers via VPN and have been able to monitor servers (processes, storage, backups) as well as kick off scheduled jobs after hours. It sure beats lugging around a laptop everywhere I go.
https://play.google.com/store/apps/details?id=service.info.blackiron.sqls
Tung
Senior DBA, Calpine Corp.
Tung Dang
Azure and SQL Server Solutions Provider
DataZip
August 5, 2020 at 4:47 pm
I personally have not used it. How does it handle windows authentication or does it only work with SQL authentication?
As a general rule, I try not to run any app that I don't fully trust to connect to anything that I deem critical. If I am connecting to my work machine from my phone or tablet (which is always a painful process... a desktop computer is not designed to be run from a 5.5" touchscreen with no physical keyboard), I use apps from developers I know and trust. VPN client is provided to me by my company so I have no options there, but then I RDP in using the Microsoft RD tool. Once in my desktop, I can do everything I need with apps I trust (SSMS for example).
That tool may be good for some people and databases and such, but how much do you know about the tool and the company that made it? Do you trust them to not capture your credentials in any file on your phone/tablet? Does the data stay inside the app? I imagine to get the list of the information that it does, it is pulling that data locally before presenting it which means it now has the data in my phones memory (which is fine) or possibly on disk (which may be a risk).
ALL of the tools that I use on my database are from reputable companies or individuals. I would want to see some background on the company that made it before using it to connect to my financial databases (for example).
I also don't know how useful it would be for someone like me. In the event a scheduled job failed and needed to be re-run, it is rarely the case that I just run it a second time and it is successful. USUALLY I need to look through the data and figure out what went wrong and fix something prior to running it a second time. I would likely still prefer to have my laptop available... it isn't that heavy and if I am away from work (and not working from home), my company expects some delays in my support. I also have a few "rules" that I have made for myself like "don't answer the phone while eating". Everyone needs some downtime to prevent burnout. If you are working 24/7, most people will find they get burnt out pretty quick plus it will ruin any relationships you have as it will become very apparent that work is your priority.
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
August 5, 2020 at 9:02 pm
Those are very good points. I too have taken safety precautions given the fact that my account has access to everything. For the app, I use my windows credentials to connect given that I have to frequently change my password. I also don't leave any connection entries open when I close the app. The one single connection I do create, I use for multiple sources since our instance names are numbered sequentially, so I just change the number.
I sent them an email in regards to SQL Server connections and they use the jtds driver library to connect. JTDS is also used by our developers and 3rd party companies to connect their java apps to SQL Server. The app user has the ability to select Encryption and Trust Certificate options which I always use. Unfortunately, I have loads of developers and managers working after hours and so I constantly have to be available after hours and they expect DBAs to be immediately available. It's great because they always want DBAs to kick off specific production jobs and sometimes the datacenter calls at the most inconvenient times regarding blocking and low free space in storage. The app helps with some problems but not all. At least with the app, I can work with them without delay and my laptop isn't attached to me as much as my phone.
I guess for some it could be useful and for others not. The only times I feel insecure with my laptop is when I'm using a public WIFI at the airport, hotel, or cafe. I do use RDP to access my local desktop at the office but going from 3 screens to one small laptop screen is like going from one small laptop screen to a 5.5" screen.
Tung Dang
Azure and SQL Server Solutions Provider
DataZip
August 5, 2020 at 9:51 pm
Nice. It does sound like a useful tool for sure.
If I was connecting to a business critical server, I'd want to do some analytics on the tool to make sure it isn't capturing any data or sending anything off to a 3rd party server. But that isn't hard to check, just time consuming.
My opinion, ideally you would have a rotating DBA schedule if you are needed 24/7. Probably cheaper to hire a second DBA to work the night shift than it is to pay you the overtime.
If they have specific production jobs that they need run after hours, it may not hurt to get them set up with permissions to run those jobs. Saves them the overhead and gives you a break from being on call 24/7. The blocking and low free space problems are a bit harder to troubleshoot automatically or let others handle, but I would hope that those problems are infrequent. especially low disk space.
My approach is to try to enable the users to work without needing to call in a DBA to do repeated tasks. My overtime bill should be as small as possible as DBA's are expensive enough on regular pay! Plus your sanity and peace of mind and sleep are far more important than work (my opinion). I would much rather have a nice supper with my family without being tied to my phone, or to enjoy some time on the patio without worrying that work will be calling and I will have to work after having a beer or 2.
My downtime is critical to my sanity and my health. The odd call for overtime is fine and expected and I get those. Heck, I have planned overtime one per month for roughly an hour to do some server maintenance. But unplanned overtime should be at a minimum, and I estimate that I am at maybe 4 hours unplanned overtime per year and 14 hours planned overtime per year. It used to be much much higher for both numbers, but it was starting to affect my sleep, my health, my friendships, and my relationship with my wife so I worked with the company to reduce the unplanned overtime. When I say it was much higher, it started at 9 hours per month of overtime when I first became a DBA here. I worked with my manager and was able to get that down to 4 hours per month which is the best we could do at the time without changing processes outside of our department. So we worked to changed those processes and now I am at 1 hour planned per month. I said 14 hours planned because sometimes that 1 hour runs into 2 depending on what is being done, but it is USUALLY 1 hour per month.
The older I get, the more I enjoy having time with my family and the less I want to do overtime for work. So if I can do somethign to reduce the overtime (such as building an application to allow unpriviledged users to run a specific SQL job), I will write that program and put the power into their hands instead of mine.
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
December 12, 2021 at 10:14 am
Has anyone used Brain Box SQL app for Android in the google play store?
What do you think?
I've been using it to connect remotely to my SQL Servers via VPN and have been able to monitor servers (processes, storage, backups) as well as kick off scheduled jobs after hours. It sure beats lugging around a laptop everywhere I go.
https://play.google.com/store/apps/details?id=service.info.blackiron.sqls
Tung
Senior DBA, Calpine Corp.
Hi there I am newbie here and I would like to let you know that which play store link you have shared here it's doesn't work which I think you have to check and fix it...thanks...
December 13, 2021 at 8:20 am
December 13, 2021 at 3:13 pm
tung858 wrote:Has anyone used Brain Box SQL app for Android in the google play store?
What do you think?
I've been using it to connect remotely to my SQL Servers via VPN and have been able to monitor servers (processes, storage, backups) as well as kick off scheduled jobs after hours. It sure beats lugging around a laptop everywhere I go.
https://play.google.com/store/apps/details?id=service.info.blackiron.sqls
Tung
Senior DBA, Calpine Corp.
Hi there I am newbie here and I would like to let you know that which play store link you have shared here it's doesn't work which I think you have to check and fix it...thanks...
Link works fine for me! What happens when you click on it? I get a "not compatible with your device" message, but it works.
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
December 13, 2021 at 9:02 pm
tung858 wrote:I sent them an email in regards to SQL Server connections
So you sent yourself an email? The website for this app is literally in your bio. By all means promote your product if you must but don't dress it up like "hey guys, I've been using this great app etc...."
LOLOL !!
February 18, 2022 at 1:36 pm
This was removed by the editor as SPAM
February 18, 2022 at 2:26 pm
aaradhya - I think the app is DOA. Looking at the link, they have had 10 downloads and it hasn't been updated since December 2020 and personally, I think the cost is a bit too high for what it does. You are looking at $95/month or $995/year according to their website. Plus, looking at the google play listing it has only had 10+ downloads. Not sure how google marks that (after 10+ is it 100+ or 20+?), but it is still pretty low for being out for over a year. My guess is that the cost is too high. Plus, from what I can tell, 0 reviews is a bit concerning.
My device is nothing super fancy or special, just a normal Android 11 phone, but for some reason I am blocked from installing this. Best guess is it may be region locked OR doesn't support Android 11, but I am not certain. Reading the TOS, it looks like it may be region locked - "These Terms shall be governed and construed in accordance with the laws of United States without regard to its conflict of law provisions.". The terms are valid in the USA and I live outside the USA, so that is probably why I can't install it.
I am also a little concerned about their terms of service... specifically "Our Service may contain links to third-party web sites or services that are not owned or controlled by Alpha One, LLC.". If I am paying for the app and it is just connecting to my SQL instances, why would it need any links to third-party web sites or services? Also this section is a bit scary "Your use of the Service is at your sole risk. The Service is provided on an “AS IS” and “AS AVAILABLE” basis. The Service is provided without warranties of any kind, whether express or implied, including, but not limited to, implied warranties of merchantability, fitness for a particular purpose, non-infringement or course of performance.". I would HOPE that there is some level of accountability with their tool in the event their tool destroys my data or does things it is not designed to do (run jobs without me clicking anything for example).
I also like this clause in the TOS: "We reserve the right, at our sole discretion, to modify or replace these Terms at any time. If a revision is material we will try to provide at least 30 days notice prior to any new terms taking effect. What constitutes a material change will be determined at our sole discretion.". So they could change their terms without notice and claim that it is not a "material change".
On top of the above, that tool is the ONLY tool created by the company who is requesting PII with no clear indication of how they protect that PII listed on their website. They state "While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you.". I get that the sales guys may need to contact me and identify me (need to know who I am talking to) about billing and such. They do list that they do their best to protect your data, but claim that no protection method is 100%. I would hope that a minimum they are encrypting the data at rest and in motion, but it is impossible to say from reading their website. Mind you, I don't know of any company that publicly announces that they encrypt data at rest and in motion or what encryption algorithms they use, so this one isn't as much of a red flag to me. They do admit they give your PII to 3rd party companies who have said they won't use it for purposes other than for data analytics for this app.
To me though, too many red flags. Not trying to say it isn't a good fit for some people, but it is not a tool I would use.
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
April 15, 2022 at 6:34 pm
This was removed by the editor as SPAM
June 19, 2022 at 5:07 pm
This was removed by the editor as SPAM
April 29, 2023 at 8:30 am
This was removed by the editor as SPAM
April 29, 2023 at 8:31 am
This was removed by the editor as SPAM
July 20, 2023 at 5:27 pm
This was removed by the editor as SPAM
Viewing 15 posts - 1 through 15 (of 24 total)
You must be logged in to reply to this topic. Login to reply