Sign In
Fort SQL
Information about SQL Server security.
Options
About
Email Blog Author
RSS for posts
Atom
RSS for comments
OK
Search Blogs
Advanced search options...
Search In:
Everything
Blogs
Forums
People
Groups
Places
Pages
Date range:
All Time
Last Year
Last 6 Months
Last 3 Months
Last Month
Last Week
Last Two Days
Blog - News
New
Windows Thin PC
for the Enterprise
Federations in SQL Azure
: Database Solutions with Unlimited Scalability
Linkles
SQL Security Links
SQL PBM
SQL Server Policy-Based Management blog
Security Forum
SQL Server security forum.
SQL Security Blog
Same topic, different perspective...
WS08 User Rights
Windows Server 2008 user rights, group policy names and constant names.
Service Account Permissions
Permissions required for each service account.
Personal Links
Elf Ink
My creative side has concocted some database t-shirts.
Unusual Gifts
Have a hard time coming up with unusual gifts for your spouse? How about hand-crafted jewelry?
SQL Server Links
Build Numbers
SQL Server build numbers and SP levels
Product Team
Give feedback to the SQL Server product development team, including new feature requests.
xSQL Software
Free data & schema comparison tools
Master Data Services
SQL Server Ops Guide
Created for SQL Server 2000, this DBA opertations guide is still valuable.
Move SharePoint DBs
How to move SharePoint databases to a different or upgraded SQL Server
Upgrading SQL Clusters
Rolling version upgrades of clustered SQL Server
Migrate Logins
Migrate SQL Server logins including the security IDs.
Login Error Codes
Error 18456 states
Hyper-V SQL Server
Best practices for virtualized SQL Server
Who Is Active?
Like an sp_who2 on steroids, by Adam Machanic.
2012 New Features
Tags
Admin
Alerting
Auditing
Configuration
Debug
Encryption
Error
Maintenance
Off-Topic
PBM
Performance
PFE
Scripts
SRRs
STIG
Archive
Archives
May 2012
(1)
April 2012
(1)
March 2012
(1)
February 2012
(1)
January 2012
(2)
December 2011
(1)
November 2011
(2)
October 2011
(1)
September 2011
(1)
August 2011
(1)
July 2011
(2)
June 2011
(1)
May 2011
(1)
April 2011
(1)
March 2011
(1)
February 2011
(1)
January 2011
(1)
December 2010
(1)
November 2010
(1)
October 2010
(2)
September 2010
(2)
August 2010
(1)
July 2010
(1)
June 2010
(1)
May 2010
(3)
March 2010
(3)
February 2010
(2)
January 2010
(4)
December 2009
(2)
November 2009
(2)
October 2009
(7)
TechNet Blogs
>
Fort SQL
Posts
Subscribe via RSS
Sort by:
Most Recent
|
Most Views
|
Most Comments
Excerpt View
|
Full Post View
Fort SQL
Note to self on AlwaysOn...
Posted
20 days ago
by
Quantum John
1
Comments
I came up with the idea that perhaps we could let clients connect to a database in an AlwaysOn Availability Group (AG) by the current instance name instead of the virtual network name (VNN) if the cluster service crashed. This idea does not work. Microsoft...
Fort SQL
Installing SQL Server in a High-Security Domain, Part II
Posted
1 month ago
by
Quantum John
0
Comments
In this article , I pointed out some of the most common permissions failures when installing SQL Server in an environment where security has been hardened, such as the removal of the Debug Programs permission. In my experience, "hardened" usually means...
Fort SQL
SQL Server Installation Center 2012
Posted
2 months ago
by
Quantum John
0
Comments
As a reminder for myself when I can't fire up the Installation Center, here are the screen shots. To make it slightly more interesting, I'm adding some notes about the differences from the 2008 R2 version. I'm also attaching a Word doc with the 2012 and...
Fort SQL
Does the DoD STIG require Transparent Database Encryption (TDE)?
Posted
3 months ago
by
Quantum John
0
Comments
Does the DoD STIG require Transparent Database Encryption (TDE)? The short answer is: It depends on whether or not the Data Owner says the data must be encrypted. The current version of the DoD Database STIG is v8r1. Here are two relevant sections...
Fort SQL
SQL Server 2012 release date: March 7, 2012
Posted
4 months ago
by
Quantum John
2
Comments
It's official, SQL Server 2012 goes on the market on Wednesday, March 7th, 2012! Update on Feb 27, 2012: Rats. I'm always careful not to divulge any confidential information, and I'm sure I got this date from an official source that did NOT state that...
Fort SQL
SQL Server Accounts
Posted
4 months ago
by
Quantum John
0
Comments
Sometimes I run into established DBA's who have a little confusion regarding the different types of accounts used with SQL Server. I suspect that kind of confusion may come from a history of installing/experimenting with SQL Server on a workstation or...
Fort SQL
Get Rid of Deadlocks
Posted
5 months ago
by
Quantum John
4
Comments
Locks are used by relational database management systems to increase user concurrency (more users) while guaranteeing data consistency. A deadlock is when two locks interfere each other, and is caused by one process locking a row, page, partition, or...
Fort SQL
The Database STIG's System Security Plan
Posted
6 months ago
by
Quantum John
2
Comments
The Database STIG requires a written System Security Plan, and it's the responsibility of the Information Assurance Officer (IAO) to create it (see section 3.1.9 below). Although the DBA doesn't create it, the DBA can advise the IAO, and the DBA is required...
Fort SQL
Securing SQL Server Integration Services (SSIS)
Posted
6 months ago
by
Quantum John
1
Comments
I was recently asked about securing SQL Server Integration Services, and I knew next to nothing about it. After digging in for a while, here are my notes, mostly for myself, but shared in case they might help someone else. There are 3 areas that need...
Fort SQL
SQL Server and PowerShell Security
Posted
7 months ago
by
Quantum John
0
Comments
Sometime back, I heard that Microsoft was going to start using PowerShell scripts to monitor and optionally enforce security standards in SQL Server configurations, such as in the Microsoft Security Compliance Manager (SCM). I knew little about PowerShell...
Fort SQL
Separation of Duties for DBA's
Posted
8 months ago
by
Quantum John
3
Comments
Someone recently asked me about the principle of separation of duties (aka segregation of duties) as it applies to SQL Server DBA's, and I thought that would make a good topic for this blog, so here goes... The idea of separating duties in general...
Fort SQL
SQL Server, the DoD, and Common Criteria
Posted
9 months ago
by
Quantum John
2
Comments
Common Criteria is an international standard for a set of security characteristics, and the U.S. Department of Defense (DoD) Database Security Technical Implementation Guide (STIG) (via the Security Readiness Review for SQL Server) requires it to be enabled...
Fort SQL
Free SQL Ranger Training
Posted
10 months ago
by
Quantum John
0
Comments
When I first heard about "SQL Rangers" I wasn't sure what it was, but I definitely wanted to be one. Just 'cause it sounded so cool. Basically, it was an early name for what later became Microsoft Certified Masters, which was the highest level of certification...
Fort SQL
Conditionally Updating Statistics
Posted
10 months ago
by
Quantum John
0
Comments
SQL Server's query optimization engine uses statistics on indexes to determine the most efficient execution plans. By default, SQL Server automatically updates statistics, but sometimes the automatic processes don't update them soon enough, so there are...
Fort SQL
PFE vs. Consultant
Posted
11 months ago
by
Quantum John
0
Comments
Well, it's almost the end of June and none of my draft posts are close enough to finishing to meet my self-imposed standard of at least one post per month. So, here's a pathetic little human-interest post. Microsoft has a Services group which provides...
Fort SQL
Test SharePoint Mirror Without Down-Time
Posted
over 1 year ago
by
Quantum John
0
Comments
Here's a SQL Server PFE war-story to give one example of one of the kind of work we might do. Most of the customers I support run SharePoint services, and they use a variety of methods to provide disaster recovery capabilities. One method involves...
Fort SQL
Changing Domains on a SQL Server
Posted
over 1 year ago
by
Quantum John
2
Comments
Someone recently asked me what issues might arise when changing a server's domain and the server is running SQL Server. Here are the possible issues I'm aware of as far as SQL Server is concerned: 1. SQL Server SysAdmin (SA) Access. The most important...
Fort SQL
Do You Need MSDTC?
Posted
over 1 year ago
by
Quantum John
0
Comments
STIG requirement DG0016 specifies that you should not install any service you do not need, and if one is automatically installed and cannot be removed, it should be disabled. The Microsoft Distributed Transaction Coordinator (MSDTC) is a Windows service...
Fort SQL
The Easiest Way To Rebuild The master Database
Posted
over 1 year ago
by
Quantum John
4
Comments
If your SQL Server master database becomes corrupt, such as from its disks losing power while SQL Server was running, the conventional advice is to rebuild the master database, start SQL Server, then restore the backup of the master database. That's because...
Fort SQL
How To STIG a Database System
Posted
over 1 year ago
by
Quantum John
0
Comments
This post is to provide a little enlightenment to folks who have never STIG'd a database system before and assume that the process is a one-time configuration. It's not. It's not even close. STIG compliance requires: One or more named Database...
Fort SQL
Summary of Audit-Specific STIG ID's
Posted
over 2 years ago
by
Quantum John
The DoD Database Security Technical Implementation Guide (STIG) has quite a few requirements in the area of auditing, but they're scattered throughout the document. Here's a list of all the audit-related STIG ID's that I found. From the Security Readiness...
Fort SQL
File-Sizing
Posted
over 2 years ago
by
Quantum John
0
Comments
One of the primary areas of responsibility for DBA's is maintenance, and one of the primary maintenance tasks is file-size management. First I'll present a list of the file-sizing tasks with short explanations for each one, then some background information...
Fort SQL
Failover Cluster Concepts
Posted
over 2 years ago
by
Quantum John
0
Comments
This post is primarily an online note for myself, which I'll make public in case someone else might find it helpful, but here's one issue I've seen cause more confusion among my customers than any other regarding SQL Server clustering. The SQL Server...
Fort SQL
Primary DBA Responsibilities
Posted
over 2 years ago
by
Quantum John
0
Comments
SQL Server is so well-behaved it's often installed by 3rd party applications in an organization or department without a professional Database administrator (DBA). When such implementations need attention (e.g. backups), system administrators often get...
Fort SQL
DG0155: Trusted file check
Posted
over 2 years ago
by
Quantum John
1
Comments
The DoD Database STIG includes DG0155 (CAT II): The DBA will ensure all applicable DBMS settings are configured to use trusted files, functions, features, or other components during startup, shutdown, aborts, or other unplanned interruptions. In the...
Page 1 of 3 (52 items)
1
2
3