Problems displaying this newsletter? View online.
SQL Server Central
Featured Contents
Question of the Day
The Voice of the DBA
 

Daily Coping Tip

Donate some unused items, clothes, tech, etc. to a local charity

I also have a thread at SQLServerCentral dealing with coping mechanisms and resources. Feel free to participate.

For many of you out there working in a new way, I'm including a thought of the day on how to cope in this challenging time from The Action for Happiness Coping Calendar. My items will be on my blog, feel free to share yours.

Attacks on Unsecured Databases

Imagine that you're a researcher doing some data analysis for your company. You run some queries or load some data and then go home. The next day, you come in and find that all of our data has been deleted. Perhaps you're the victim of a Meow attack, and as many of the comments indicate, this may be considered a public service.

I think I agree with that, and here's why. If you put up data about me in a system and don't secure it. I'm not sure you should be trusted with the data. The article notes that UFO VPN was a victim. They got caught not only with an unsecured database, but one that had data that wasn't supposed to be logged, including passwords. They moved their data to a new database, also unsecured, and a meow attack wiped it out.

While I understand this might cause a company to fail and affect employees who hadn't made the decision to store this data and ignore security, I'm don't think that the world overall is worse off because their data is gone. I'm also not sure that the employees are worse off as I'd suspect fines or other legal action might have wiped the company out anyway.

I know some university groups may lose data that is difficult or impossible to recover. I know some companies might be irreparably harmed. However, I also know that it's 2020 and there is no reason to have an unsecured set of data available to the public. Whether a database, a file-share service, or anything else. Security needs to be provided for data.

Like many of you, I do use some services in the cloud to share files. I also find it maddening that most public access has been revoked and I need to specifically invite people, set passwords, and more to easily share things. However, that's what we need to do in an interconnected world where we have personally identifiable and sensitive data. We need to secure it.

I'm glad SQL Server doesn't allow blank passwords for sa, and I hope that no one allows simple, easy passwords on their systems. It is convenient, but the price your organization might pay for this convenience could put them out of business.

Steve Jones - SSC Editor

Join the debate, and respond to today's editorial on the forums

 
 Featured Contents

Azure Data Factory : Your First Data Pipeline

ramakant from SQLServerCentral

Introduction Azure Data Factory is the cloud-based ETL and data integration service that allows you to create data-driven workflows for orchestrating data movement and transforming data at scale. We can create and schedule data pipelines which can move data between various supported data stores. We can also use for data transformation before loading it into […]

SQL Server Bulk Insert for Multiple CSV Files from a Single Folder

Additional Articles from MSSQLTips.com

Check out this article to see how to quickly import into SQL Server many files with the same structure using T-SQL.

From the SQL Server Central Blogs - Capturing Queries Can Be a Pain

Grant Fritchey from The Scary DBA

The moment you decide you want to monitor your SQL Server instance for query behavior, you’re going to be forced to make a bunch of choices. Further, all these...

From the SQL Server Central Blogs - Things That Shouldn’t Be Normal in Database Development (28 minute video/podcast episode)

Kendra.Little from SQLServerCentral

Many people use entrenched processes for database development that have been in place so long that it’s hard to imagine doing it any other way. In this episode, I...

 

 Question of the Day

Today's question (by Steve Jones - SSC Editor):

 

The D in ACID

What does the D in ACID stand for when related to relational databases?

Think you know the answer? Click here, and find out if you are right.

 

 

 Yesterday's Question of the Day (by Steve Jones - SSC Editor)

Offline Filegroups

I have multiple files in a filegroup in my database.  There are two filegroup: Primary and Archive. I decide to run this code:

ALTER DATABASE FGTest MODIFY FILEGROUP (NAME = N'Archive', OFFLINE)
GO

What happens?

Answer: An error is returned

Explanation: This produces an error. You cannot take a filegroup offline, but you can take files offline. Ref: ALTER DATABASE - https://docs.microsoft.com/en-us/sql/t-sql/statements/alter-database-transact-sql-file-and-filegroup-options?redirectedfrom=MSDN&view=sql-server-ver15  

Discuss this question and answer on the forums

 

 

 

Database Pros Who Need Your Help

Here's a few of the new posts today on the forums. To see more, visit the forums.

SQL Server 2017 - Development
Unable to debug a sproc - I'm trying to debug an SP in visual studio 2019 (what a palava! bring back this ability in SSMS please!!) Anyways. I have created a connection to the DB and tested successfully. Now I add a script to the project and this contains my exec SPname code. Next I select execute with debugger and […]
SQL Server 2016 - Administration
Availability groups - licencing considerations - Hi all   I'm trying to my facts in a row before I go to managers with this one.   We have one copy of our production data (from the software vendor) on server A (I know, it's the only copy and I've been shouting about that forever). What we want to do is set […]
Folders in C:\Users - are they really needed? - I have some time on my hands (sadly) and am using some of it to clean up my computer. The computer in question runs Windows 7 (no, 'upgrading' to Windows 10 is not an option) and I have used it for many years. Over time, I have installed at least three versions of MS SQL, […]
SQL Server 2016 - Development and T-SQL
Column Level Collation Japanese_90_CI_AS_WS - Having issues getting the column level collation to function. The default collation of the database is SQL_Latin1_General_CP1_CI_AS. Inserted the following characters below ??? into the table and render as ??? as expected. I altered the column collation to Japanese_90_CI_AS_WS and yet to get it to render properly. I am able to get the characters to […]
Is there a tool to automate SQL tuning and review? - I am looking for a tool that reviews and tunes SQL queries automatically. Does Microsoft or a 3rd party vendor have such a tool? Ideally such a tools could be used to automate this process fully. If it could perform standards checking that would be even better. Any ideas?
THROW vs RAISERROR with bubbling up - Hi all, I know THROW is newer and recommended but I'm wondering if one bubbles up and the other doesn't.  Specifically, let's say I have nested Try/Catch's and the error happens in the second one.  Which bubbles up?  Or does the Catch handle that? Thanks!
ALTER DATABASE Issue - Hello, I faced  very strange issue. When I try from management studio to put the specific database to RESTRICTED_MODE, the operation succeeded, but when I try to do it from the operation script, I receive a message : "Msg 5070, Level 16, State 2, Line 3 Database state cannot be changed while other users are […]
Simple query question - I'm new to SQL and I'm struggling to return a result set which I worked on for a long time: Basically, I am trying to count and include active accounts per day over a timeframe (@params determine the time frame window). But the result must specify per day the number of active accounts. My struggle […]
Simple cast question - This is for SQL Server 2016.  Table called tblTest has a column called TestNumber that is varchar(5).  I think this should work and does when I run it but I'm seeing references that it won't and can't figure out why.  Can anyone explain or am I reading misinformation?  Something about a conversion error but the […]
SQL Server 2019 - Administration
Mobile DBA Tool for Android - Has anyone used Brain Box SQL app for Android in the google play store? What do you think? I've been using it to connect remotely to my SQL Servers via VPN and have been able to monitor servers (processes, storage, backups) as well as kick off scheduled jobs after hours.  It sure beats lugging around […]
SQL Server 2019 - Development
Is there a version of SQL Server that does automatic SQL tuning? - Is there a version of SQL Server that does automatic SQL tuning? I am also looking for automatic index creation based on queries executed. I know the query store from SQL Server 2016. I am sure that many things have changed since 2016. Any suggestions?
Azure SQL - Handling JSON column in the table - Hi I want to convert table content which contain the json values in the columnin Azure SQL server. like below Country          state              json_value US               Alabama          {"name':"John","surname":"Don","age":45,} Canada       Toronto          {"name":"Mark","surname":"Bagwell","age":35,"Gender":"Male"} I need to convert the table details in query itself like below country                 state                      name              surname               age           Gender US                          Alabama              John                 Don                       45             NULL Canada                Toronto                 […]
SQL Azure - Development
Create a User in Azure SQL Database - I need to create a user in Azure SQL Database and map the user to a specific database. does anyone have the syntax to make this happen? The GUI is restricted and you cant do it as you would in SSMS on-prem as you cant view the properties. Also I am after a decent script […]
General Cloud Computing Questions
Career advancement in cloud - I am a SQL server administrator with 5 years of pure DBA experience. I am planning to get trained into cloud like Azure or AWS or any other cloud technology where there is a future growth. Can someone guide me which patch to take, is it Azure or AWS. Since i am an administrator i […]
Strategies and Ideas
Loading ODS strategies - Hi everyone, Just curious on others' approaches on this.  So I'm developing a data warehouse in pieces.  The approach I was thinking of taking is pulling in data from my numerous source systems unaltered into the Operational Data Store, then having my scrubbing and data quality processes put the good summarized data in the DW. […]
 

 

RSS FeedTwitter

This email has been sent to {email}. To be removed from this list, please click here. If you have any problems leaving the list, please contact the webmaster@sqlservercentral.com. This newsletter was sent to you because you signed up at SQLServerCentral.com.
©2019 Redgate Software Ltd, Newnham House, Cambridge Business Park, Cambridge, CB4 0WZ, United Kingdom. All rights reserved.
webmaster@sqlservercentral.com

 

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -