Dedicated Admin Connection (DAC): Your Key to Troubleshooting and SQL Server Security
June 17, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. In … Read more
How Database Mail XPs Can Become a SQL Server Security Liability
June 16, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. If … Read more
Local Windows Administrators Are Basically SQL Server sysadmins, Too
June 15, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. If … Read more
4 Reasons Why the Owner of SQL Server Agent Jobs Should Not Be User Logins
June 14, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. In … Read more
SQL Server Security Best Practices for Linked Servers
June 13, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. SQL … Read more
SQL Server Security: Best Practices for db_accessadmin, db_securityadmin, and db_ddladmin Roles
June 12, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Understanding … Read more
Handling Invalid and Orphaned Users in SQL Server
June 11, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Introduction … Read more
Cross-Database Ownership Chaining in SQL Server: A Double-Edged Sword
June 10, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Cross-database … Read more
The Database Owner Role in SQL Server: A Call for Least Privilege
June 9, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Introduction … Read more
When SQL Server Database Owners Are NULL or Mismatched
June 8, 2024
This post is part of our SQL Server security blog series, 30 SQL Server Security Checks in 30 Days. We’re publishing a new security check every day in the month of June. Visit our sp_CheckSecurity page to learn about our free SQL Server tool you can download and run to check your own server. Let’s … Read more