Microsoft has released (or co-released) 3 new tools to help eliminate SQL injections: UrlScan version 3.0 Beta, a security tool that restricts the types of HTTP requests that Internet Information Services (IIS) will process. By blocking specific HTTP requests, the UrlScan helps prevent potentially harmful...
One of the biggest threats in IT industry & Database world is unprecedented attacks aka most commonly termed as 'SQL injection'. There is no doubt that biggest database vendors, one of them as Microsoft so far providing recommendations regarding security-related configuration settings since...
Granting permissions to relevant account is a required criteria within the SQL Server databases management, for this even Reporting Services is not exceptional. As per the configuration by default the users connect to the report server by using their own Windows domain credentials and integrated security...
Secured by default, secured by design is the buzzword and catchy stuff for any Enterprise IT administrators. Then it comes about standards and policies to follow such as ISO , with the recent threats (last 10 years) and vulnerabilities within IT world it is most important factor you need to follow as...
Featured Web Seminar: SQL Consolidation: Insights from Customers, Analysts & HP On-Demand Combat SQL Server Sprawl - Inside Experiences & Best Practices Microsoft SQL Server has enjoyed phenomenal success as a database server. Its relatively low cost, steadily increasing capabilities and ease...
SQL Server 2005 has introduce a secret-door for Admins to identify and resolve any connect lockout issues within your database instance, as on http://sqlserver-qa.net/blogs/tools/archive/2007/08/04/dedicated-administrator-console-dac-saved-an-important-day-for-a-dba.aspx how. Use the following query...
Adding password complexity and password expiration to SQL Server logins is one of best feature I quote for SQL Server version 2005 onwards, similarly such password complexity policies are designed to deter brute force attacks by increasing the number of possible passwords. When password complexity policy...
Posted to
SQLServer-QA.net - Knowledge Sharing Network (SSQA.net)
(Weblog)
by
Anonymous
on
04-30-2008
Filed under: sql server, microsoft, security, feature, password, best practice, trustworthy, computing, logins, policies, settings, check_policy, check_expiration
Another part of Technet webcast series on SQL Server 2008. In this part a focus on IT professionals and the SQL Server 2008 the Trusted Platform. In the first part of the series we spent time looking at how Contoso was using SQL Server 2008 as a productivity platform. Now we change direction from developers...
First part of question is a pure newbie FAQ to know about, and the simple answer would be it is one of the Clustering type you can adopt within your SQL Server environment. To cover on newbie aspect both Active/Passive & Active/Active configuration is available within SQL Server, both operating system...
Posted to
SQLServer-QA.net - Knowledge Sharing Network (SSQA.net)
(Weblog)
by
Anonymous
on
03-18-2008
Filed under: sql server, performance, security, clustering, 2005, partition, monitoring, active/passive, parallel execution, performance monitoring, active/active, scalability
Security - a major ingredient for every Enterprise to avoid the adversaries attempt to invade your customers’ networks and access their servers—to bring them down, infect them with viruses, or steal information about customers or employees, every day! The recent release of Windows Server 2008 from Microsoft...