No hearing, or breathing… No movement, no colors… Just silence… Sounds peaceful. Sounds serene. And in a world where entropy didn’t exist, it could even stay that way. That’s not our world, though. Our SQL Servers (in whatever flavor they exist) don’t live in utopia. They live in a world where bad actors are trying … Read more
On patch Tuesday this week, Microsoft released an Important severity security update (a CVSS base score of 7.5) The details of this 0-day exploit are available to read at the NIST site, and the Microsoft security update site. In short, the exploit that Microsoft has discovered and subsequently fixed can allow information disclosure. (That’s the … Read more
Addressing orphaned users is an important piece of SQL Server security management. When left unchecked, you can accumulate an overwhelming number of users that exist in a database but do not have a correlating login in the master database, thus preventing access to the server or the database at all. There are dbatools PowerShell modules … Read more
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Thanks … Read more
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. As … Read more
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Audits … Read more
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. SQL … Read more