SQL 2000 DBA Toolkit Part 1

  • The link to the code does not work. I am hoping to source code in order to see if I can get around the export/import issue I am having.

    Thanks

  • Michael,

    I appreciate the DBA Toolkit, and it has been very helpful. I continue to have trouble with the encryption and desperately need help.

    I need to be able to to set up another server for failover. I have compiled the code for CertMgr (posted earlier) (that uses the machine key). I used this to Export the scrypto params. Then on the failover server I do an import of the same scrypto.params file. I also have a SQL script with the data from the Local_key and Master_Key tables. so the data in these tables on both servers are the same.

    My test is to use the decrypt_AES function to see the value in the encrypted column. On the failover server I am getting NULL back.

    I also have problems getting data back from ASP.NET using a ADO.NET SQLClient call to a stored procedure. The values in the column is null. Calling the same stored procedure through ASP - ODBC works.

    Is the source code for the sprocs available?

    Thank-you

  • Hi all,

    I have a problem, I encrypted data using AES encryption algorithm with function fn_encrypt_aes, but the results were diferents in differents servers.

    how could be the results to be the same in both servers?

    Thanks for your help.

    Alejandra

  • I'm upgrading to SQL 2008 and I want to use something similar to this toolkit on the new SQL 2008 server. Is there something compatible?

    Jason

  • Check out transparent data encryption now available in 2008. If this does not meet your needs please read Micheal's article and all the threads. One issue with the toolkit is with replication, or restoring to another server.

  • Hi Mike,

    It's a cool Tool kit and I'm now studying the kit and going to propose it to be used in a project enhancement.

    To propose, I need to have a prove of licensing and prove of safe of the dlls. I found that there is a statement of licensing posted by you. So, if I modified the install.sql, uninstall.sql and do not include every functions (dlls) to the kit, will the terms break? and is there any offical terms of usage so that I can show to my boss?

    For safety, how can I prove to my boss on the safety of dlls?

    Million thanks,

    Gary.

  • Hi Mike,

    I'm studying the tool kit and got a question of using password for the key. I have used different password for creating master and local keys but I found that whenever the password used for encrypt the data and decrypt the data is the same, the password for keys are meaningless. Like the example below, all the key materials and passwords are different for the master key and local key. But still, I can get the right encryption and decryption by that key as below.

    exec create_master_key 'PWMaster', 'pw1', 'pw2'

    exec create_local_key 'PWMaster', 'PWLocal', 'pw3'

    DECLARE @encry AS VARBINARY(128)

    DECLARE @decry AS VARCHAR(128)

    select @encry = dbo.fn_encrypt_aes(CAST('Data to be encrypt' AS VARBINARY), 'PWLocal', 'pw4', 128)

    select @decry = dbo.fn_decrypt_aes(@encry, 'PWLocal', 'pw4', 128)

    Print @encry

    Print @decry

    Have I made any stupid mess up of the concept? Can you please remind me? Thanks so much.

    Gary.

  • I am also having the same problem. I used the web site to encrypt/decryt credit card details but when i checked it with other machine, for example in Query Analyzer, it shows NULL result.

    Is it possible to remove this "per local machine" and to make it accessible to everyone?

    Can I also request for the source code for AES algorithm? Desperately need solution on this.

    Thanks,

    Mark

  • Will BlowFish or TwoFish work with image data ?? I downloaded the latest SQL toolkit and Tried running TwoFish after modifying it to handle image data converted to varbinary(max). The data came back as NULL, instead of encrypted. Either I did something wrong (very likely), or there's some limitation in the DLL for length, or there's some other problem I don't understand.

    --modified fn_encrypt_twofish in the hopes it will work with bigger data

    CREATE FUNCTION [dbo].[fn_encrypt_twofish_max] (@plaintext VARBINARY(max),

    @localkeyname VARCHAR(128),

    @password VARCHAR(128),

    @keybits INT)

    RETURNS VARBINARY(max)

    AS

    BEGIN

    DECLARE @masterkey VARBINARY(64)

    DECLARE @localkey VARBINARY(80)

    SELECT @masterkey = m.[Key], @localkey = l.[Key]

    FROM dbo.Local_Key_Vault l, dbo.Master_Key_Vault m

    WHERE l.[name] = @localkeyname

    AND l.[master_key_name] = m.[name]

    DECLARE @enctext VARBINARY(max)

    EXEC dbo.xp_encrypt_twofish @plaintext, @enctext OUTPUT, @password, @masterkey, @localkey, @keybits

    RETURN @enctext

    END

    and then ran

    -- Encrypt data

    UPDATE MyTable

    SET VoiceData = cast(master.dbo.fn_encrypt_twofish_max(VoiceData ,

    'Local Key 1', NULL, 32) AS VARBINARY(max))

    Thoughts ?

    TIA

  • Mark Salvador (2/3/2010)


    I am also having the same problem. I used the web site to encrypt/decryt credit card details but when i checked it with other machine, for example in Query Analyzer, it shows NULL result.

    Is it possible to remove this "per local machine" and to make it accessible to everyone?

    Can I also request for the source code for AES algorithm? Desperately need solution on this.

    Thanks,

    Mark

    Hi Mark,

    The code uses the local machine encryption key to protect your data encryption keys. You can conceivably remove this limitation, but you'd have to modify the code yourself to do this. The source code (including the source for all algorithms used) is posted here: http://www.sqlservercentral.com/Forums/Topic199534-236-14.aspx

    Thanks

    Mike C

  • homebrew01 (4/5/2010)


    Will BlowFish or TwoFish work with image data ?? I downloaded the latest SQL toolkit and Tried running TwoFish after modifying it to handle image data converted to varbinary(max). The data came back as NULL, instead of encrypted. Either I did something wrong (very likely), or there's some limitation in the DLL for length, or there's some other problem I don't understand.

    --modified fn_encrypt_twofish in the hopes it will work with bigger data

    CREATE FUNCTION [dbo].[fn_encrypt_twofish_max] (@plaintext VARBINARY(max),

    @localkeyname VARCHAR(128),

    @password VARCHAR(128),

    @keybits INT)

    RETURNS VARBINARY(max)

    AS

    BEGIN

    DECLARE @masterkey VARBINARY(64)

    DECLARE @localkey VARBINARY(80)

    SELECT @masterkey = m.[Key], @localkey = l.[Key]

    FROM dbo.Local_Key_Vault l, dbo.Master_Key_Vault m

    WHERE l.[name] = @localkeyname

    AND l.[master_key_name] = m.[name]

    DECLARE @enctext VARBINARY(max)

    EXEC dbo.xp_encrypt_twofish @plaintext, @enctext OUTPUT, @password, @masterkey, @localkey, @keybits

    RETURN @enctext

    END

    and then ran

    -- Encrypt data

    UPDATE MyTable

    SET VoiceData = cast(master.dbo.fn_encrypt_twofish_max(VoiceData ,

    'Local Key 1', NULL, 32) AS VARBINARY(max))

    Thoughts ?

    TIA

    Hi HomeBrew,

    This was written originally for SQL 2000, and the XP's would not accept BLOB data. You're limited to a max. of 8,000 bytes in most cases (I believe the Blowfish implementation maxxed out at 2,000 bytes). You're using SQL 2005 or 2008 (otherwise you wouldn't have access to varbinary(max)). If you're interested contact me offline and I'll send you an updated version of Blowfish/Twofish that uses CLR and doesn't have these same limitations.

    Thanks

    Mike C

  • Hi

    We are currently migrating from SQL 2000 to SQL2008R2 64x and are unable to install the dll's - because the dlls were compiled for 32bit environments.

    We use the AES encryption and base64 encoding functionality.

    Does anyone have the 64bit version of the AES/base64 related dlls that they can post a link for please? i.e. 64 bit versions of the following:

    xp_encrypt_aes.dll

    xp_decrypt_aes.dll

    xp_encode_base64.dll

    xp_decode_base64.dll

    If not, does anyone have the source code so I can recompile myself?

    Thanks

  • Thank you very much you are a genius!

Viewing 13 posts - 61 through 72 (of 72 total)

You must be logged in to reply to this topic. Login to reply