SQL Server Security Learning Guide

SQL Server Security Learning Guide

An unsecured SQL Server is like an open invitation to Internet hackers: They may exploit weaknesses in the operating system running SQL Server, take control of SQL Server services or simply access pieces of data that were intended to be inaccessible. Whatever the technique,

Requires Free Membership to View

Login

By submitting your registration information to SearchSQLServer.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSQLServer.com is governed by our Terms of Use. You may contact us at [email protected].

your data will ultimately be compromised. Here you will learn how to lock down SQL Server from the get-go and prevent attacks before any damage is done. You'll also get a technical overview of new security enhancements in SQL Server 2005, set to launch in November. When you're done, please take a moment to vote in our poll on SQL Server security and e-mail us to let us know what other guides you'd like to see on SearchSQLServer.com.

TABLE OF CONTENTS

Installing and configuring SQL Servers for security

Hardening access to SQL Servers

Encrypting SQL Server data

Finding and patching SQL Servers

Security enhancements in SQL Server 2005

Installing and Configuring SQL Servers

Return to Table of Contents

Webcast: SQL Server Security School: Securing SQL Servers using Group Policy

White paper: Microsoft SQL Server 2000 security

White paper: Microsoft SQL Server 2000 SP3 security features and best practices

White paper: An enterprise-class plan for securing Microsoft SQL Server databases

Tip: Netlibs: Why is less more (secure)

Expert advice: Resource for hardening SQL Server 2000

Step-by-Step Guide: Ensuring data integrity in SQL Server

Hardening access to SQL Servers

Return to Table of Contents

Webcast: SQL Server Security School: Minimizing SQL Server service, login and user accounts

Tip: How SQL Server is hacked

Tip: User rights and privileges

Tip: Accessing, manipulating and backing up data

Tip: Top four ways to secure SQL Server

Checklist: SQL Server user security

Expert advice: Secure way to share access to SQL Server running multiple databases

Expert advice: Secure data from the DBA

Expert advice: Permanently prevent Query Analyzer from accessing a particular database

Encrypting SQL Server data

Return to Table of Contents

Tip: Encrypting data in SQL Server: Dos and don'ts

Tip: How to improve SQL Server security

Tip: jTDS: Open-source JDBC 3.0 middleware driver for SQL Server

Expert advice: Permanently prevent Query Analyzer from accessing a particular database

Expert advice: Hiding the source for a stored procedure

Expert advice: Encrypting password fields

Finding and patching SQL Servers

Return to Table of Contents

Webcast: SQL Server Security School: SQL Server discovery challenges and solutions

Tip: How to improve SQL Server security

Step-by-Step Guide: How to patch SQL Server, part 1

Step-by-Step Guide: How to patch SQL Server, part 2

Security enhancements in SQL Server 2005

Return to Table of Contents

Article: Security is a catch word for SQL Server's sequel

Book excerpt: New security features in SQL Server 2005

Book excerpt: Optional features are turned off by default

Book excerpt: A quick review of SQL Server security concepts with enhancements

Book excerpt: SQL Server password policies and credentials

Book excerpt: Separation of users and schemas

Book excerpt: Specifying execution context for procedural code

Book excerpt: SQL Server permissions and new objects

Book excerpt: Assembly permissions -- Who can catalog and use an assembly?

Book excerpt: Permissions, visibility, UDTs and user-defined aggregates

Book excerpt: What can .NET code do from within SQL Server: Safety levels
Poll: Which new SQL Server 2005 security enhancement is most significant?

VISIT OUR LEARNING GUIDE ON SQL SERVER BASICS...

More News and Tutorials

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- data hiding
- data corruption

This was first published in July 2005

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Business Analytics
Data Center
Data Management
Data Management UK
Oracle
Content Management
Windows Server

Business Analytics
- TDWI: There is life after 'big data' analytics: Decision management
  
  "Big data" isn’t an infrastructure problem but instead exposes the weaknesses in how businesses make decisions today, analyst Marc Demarest said during a TDWI Solution Summit keynote speech.
- Recipe for predictive analytics success includes one part storyteller
  
  XL Insurance Inc. has a three-part formula for predictive analytics success: Be a programmer, learn statistical analysis and know how to spin a good yarn.
- Mobile BI software picking up the pace with corporate users
  
  Mobile business intelligence (BI) technology is becoming more mainstream, thanks to the rise of smartphones and tablet PCs and demand from business users for on-the-go access to BI data.
Data Center
- IBM's IMS version 12 catalog and repositories helpful for programmers
  
  IBM's IMS version 12 debuts two tools, repository and catalog, which it hopes will make life easier for programmers.
- IPv6 transition may catch IT shops by surprise: Ask the Expert podcast
  
  The switch from IPv4 to IPv6 reaches beyond your network and into the cloud. Is your data center ready for the IPv6 transition?
- HP integrates Autonomy with Converged Infrastructure for big data
  
  Amid restructuring and uncertainty, HP fits pieces of its enterprise portfolio together. Can these products appeal to IT customers wary of HP's future?
Data Management
- Data errors, other missteps can waylay BI data integration strategy
  
  A business intelligence data integration initiative can easily go off track because of problems such as data quality and data loading issues.
- Data management strategies on full display at Enterprise Data World
  
  May brings a busy season for data management conferences to a close. The last stop: Enterprise Data World, which offered advice and some laughs -- the latter at the expense of "big data."
- AppDynamics picks ScaleBase for database sharding over Clusterix
  
  Find out why application performance management company AppDynamics chose ScaleBase over the “Rolls Royce” of sharding technologies.
DataManagement UK
- MDM technology still affords chance to make poor software choices
  
  The MDM market is not so mature that bad choices are difficult to make. Beware the hype of multi domain, and don't expect technology to solve governance problems, in isolation.
- SAS: High-performance analytics frees data scientists to model faster
  
  High-performance analytics on "big data" could aid European companies as they struggle to make headway in the recession, say senior SAS executives. All sectors are turning to big data, they claim.
- Organisational design for analytics function needs governance
  
  Scant are the absolute rules for the organizational design of the analytics function. It can be outsourced or in-house; sit within a business unit or run from the centre. But it needs governance.
Oracle
- Oracle rebrands Oracle Cloud, offers few details
  
  Oracle Cloud, first announced last fall, will include more than 100 applications, the company said this week, but the availability date and cost are still up in the air.
- Oracle Platinum Services caters to high-end customers
  
  Oracle Platinum Services is a new support program from Oracle that provides specific SLAs for customers running expensive Oracle hardware such as Exadata, Exalogic and Sparc Supercluster.
- Download Technology Priorities for 2012
  
  In TechTarget’s annual IT Priorities Survey, 2,642 IT professionals and business analysts gave their IT forecasts for 2012 for their company’s plans. Find out the direction these emerging technologies are taking - the results may surprise you.
Content Management
- Enterprise search platform not just an out-of-the-box experience
  
  Implementing an effective enterprise search platform is an ongoing process that requires monitoring, measuring for success and constant fine tuning, say analysts and consultants.
- Info360 conference to emphasize social, cloud, mobile
  
  The annual Info360 conference will illustrate the new challenges content management professionals are facing.
- SQL Server log shipping offers path to SharePoint disaster recovery
  
  Brien M. Posey describes how to enable disaster recovery for SharePoint 2010 using SQL Server log shipping. It’s one way to back up data to a secondary SharePoint farm to prepare for the worst.
Windows Server
- The 2012 summer reading list for IT pros
  
  From an IT detective story to the tale of the world's most wanted hacker, these 10 books will feed your need for tech this summer.
- Install WSUS updates immediately with Windows PowerShell
  
  One little script can change your life. Use Greg Shields' 'Big Red Button' to automate patching and reclaim some hours in your day.
- How Microsoft PowerShell v3 remoting has improved
  
  Any serious admin should be learning about PowerShell -- it's the way of the future for Microsoft. Dive into one of the foundational technologies, Remoting.

All Rights Reserved, Copyright 2005 - 2012, TechTarget