Browse by Tags

All Tags » best practice » security   (RSS)
Microsoft Security Bulletin Summary for July 2008 - what is it now?
09 July 08 01:07 AM | SQL Master | 2 Comments   
I believe it has been a while that we have seen the security hotfix from Microsoft Security team on SQL Server (alone). The latest security bulletin has announced important security patches that are related to SQL Server in addition to Windows operating Read More...
SQL Injection attacks - don't forget to visit guidance information from Microsoft
31 May 08 01:59 PM | SQL Master | 4 Comments   
One of the biggest threats in IT industry & Database world is unprecedented attacks aka most commonly termed as 'SQL injection'. There is no doubt that biggest database vendors, one of them as Microsoft so far providing recommendations regarding security-related Read More...
SQL Server 2005 Login Security - CHECK_POLICY and CHECK_EXPIRATION setting, how it affects the password policy?
30 April 08 01:53 AM | SQL Master | 2 Comments   
Adding password complexity and password expiration to SQL Server logins is one of best feature I quote for SQL Server version 2005 onwards, similarly such password complexity policies are designed to deter brute force attacks by increasing the number Read More...
SQL Server Lockdown - Step by Step procedure
13 February 08 01:31 AM | SQL Master | 4 Comments   
Do you want to lockdown your SQL Server environment? Hope you dont'! Though it is not a good practice or recommendation to perform, but will atleast prove how far your SQL Server environment has securit compliance as per the industry best practices. Before Read More...
SQL Server Performance - what it takes for a newbie DBA in resolving performance issues?
05 February 08 01:57 AM | SQL Master | 6 Comments   
SQL Server Performance Tuning, sounds familiar on a DBA perspective and though it sounds like an easy words but when you start analyzing the problem it is far deeper inside. When you refer to the web resources such as forums/newsgroups then a common question Read More...
Unattended installation of application on multiple sites by using sa password with a symmetric key, is it possible in SQL Server?
29 January 08 12:36 AM | SQL Master | 2 Comments   
The newest ranch of Security - trust worthy features in SQL Server 2005 usage of symmetric keys has an important role. Always the document suggests to use Windows Authentication of security purpose and better control of user/security management, but when Read More...
SQL Server logins - enforce Password Expiration and policies
07 January 08 12:11 PM | SQL Master | 2 Comments   
Here is a quick snippet on enabling a SQL login to password expiration and password policies as per the Windows server: Open the SQL Server 2005 Management Studio. In the left pane, go to the desired server and navigate to the Security folder and expand Read More...
SQL Server 2005 memory configuration gotchas
28 December 07 03:44 AM | SQL Master | 5 Comments   
This may be last post in Performance Tuning & Security blog section here for this year!! Most of this year in the forums & newsgroups I have seen a common question asking about memory configuration within SQL Server 2005. As you may be aware that Read More...
SQL Server undocumented stored procedure to get information on login mapping name
24 December 07 05:55 AM | SQL Master | 2 Comments   
They say better not to use UNDOCUMENTED stored procedures, which is true in the aspect when any Service Pack or version is released that may not be included and your task might have issues in working out. Similar to this I was going through various methods Read More...
SQL Server 2005: Deny Server-Level Dynamic Management Views to public group
21 December 07 06:47 AM | SQL Master | 2 Comments   
As you are aware DMV - Dynamic management views are very good to provide server-level information and some of them with detailed information on the execution environment of the database engine. Just to introduce about DMVs, there are two types of dynamic Read More...
SQL Server performance monitoring requirement and specifications, heard about baseline and benchmarking?
19 December 07 05:06 AM | SQL Master | 3 Comments   
How do you define the terms "Performance Monitoring"? What is your baseline & benchmarks? Have you ever used PERFMON (SYSMON) & PROFILER for serious performance issues within your SQL Server environment? The answer may be not 'yes' for all the Read More...
Changing ports on production SQL Server - things to watch for 1433
07 December 07 11:29 AM | SQL Master | 2 Comments   
What is your criteria on assigning ports to SQL Server? Are you leaving them to default 1433? Is your SQL Server is exposed to Internet or any external sources where there is a chance to produce mass attach or run code injection? Every DBA should give Read More...

Search

Go

This Blog

«November 2008»
SMTWTFS
2627282930311
2345678
9101112131415
16171819202122
23242526272829
30123456

Syndication