THE SQL Server Blog Spot on the Web

Welcome to SQLblog.com - The SQL Server blog spot on the web Sign in | |
in Search

Browse by Tags

All Tags » Tips » Security   (RSS)
  • Online Password Security Tactics

    Recently two more large databases were attacked and compromised, one at the popular Gawker Media sites and the other at McDonald’s. Every time this kind of thing happens (which is FAR too often) it should remind the technical professional to ensure that they secure their systems correctly. If you write software that stores passwords, it ...
    Posted to Buck Woody (Weblog) by BuckWoody on December 14, 2010
  • Backup those keys, citizen

    Periodically I back up the keys within my servers and databases, and when I do, I blog a reminder here. This should be part of your standard backup rotation – the keys should be backed up often enough to have at hand and again when they change. The first key you need to back up is the Service Master Key, which each Instance already has built-in. ...
    Posted to Buck Woody (Weblog) by BuckWoody on April 20, 2010
  • Have you backed up your keys lately?

    Did you know that you already have a Server Master Key (SMK) generated for your system? That’s right – while a Database Master Key (DMK) is generated when you encrypt a certificate or Asymmetric Key with code, the Server Master Key is generated automatically when you start the Instance. So you should back all of those keys up periodically, and ...
    Posted to Buck Woody (Weblog) by BuckWoody on March 1, 2010
  • Granting rights to all objects in a database

    File this under the “I can’t believe there is still stuff that I keep learning about SQL Server 2005!” though thankfully most things I find I learn are things I wouldn’t be all that likely to use. I was asked today how I felt about using the syntax: GRANT EXECUTE TO [username] to give users rights to all procedures in the database (and you ...
    Posted to Louis Davidson (Weblog) by drsql on March 13, 2009
Powered by Community Server (Commercial Edition), by Telligent Systems
  Privacy Statement