Category Archives: Security

  1. Who should own the database?


    January 15, 2018 by Kenneth Fisher

    TL;DR; SA, or if you are really paranoid then you can create a disabled SQL login with minimal permissions and …
    Continue reading

  2. A Solution for Squirrely SQL Server Security: TSQL Tuesday #98

    Leave a comment

    January 9, 2018 by Kenneth Fisher

    It’s the first T-SQL Tuesday of the year! Arun Sirpal (b/t) is our host this month. Thanks, Arun! The subject …
    Continue reading

  3. What is impersonation for?


    December 27, 2017 by Kenneth Fisher

    I was doing some research on impersonation the other day, and among other things, I ran across a forum question …
    Continue reading

  4. When do usernames and passwords belong in connection strings

    Leave a comment

    December 18, 2017 by Kenneth Fisher

    tl;dr: When using a windows or active directory authenticated id you do not put the username or password into your …
    Continue reading

  5. Restrict the usage of a SQL Server Authenticated Application Id


    December 6, 2017 by Kenneth Fisher

    SQL Server login ids may not be the most secure thing in the world but they are likely to be …
    Continue reading

  6. UDP vs TCP


    June 7, 2017 by Kenneth Fisher

    If you’ve worked much with named instances you’ve probably had to deal with the question “What port is that instance …
    Continue reading

  7. Simple Security Report


    May 1, 2017 by Kenneth Fisher

    Quite a while ago I created a couple of little security scripts to help me out with permissions research. Over …
    Continue reading

  8. Why is a Windows authenticated login more secure than a SQL authenticated one?


    April 26, 2017 by Kenneth Fisher

    I had this question come up at work the other day and while I knew it was true I wasn’t …
    Continue reading

  9. sp_SrvPermissions & sp_DBPermissions V6.0 Finally!


    March 27, 2017 by Kenneth Fisher

    It’s been almost 3 years since I updated these SPs! I can’t believe so much time has gone by! Well, …
    Continue reading

  10. Server level database permissions


    February 14, 2017 by Kenneth Fisher

    Sometimes you have a requirement to grant permissions to every database on an instance. Historically this has required creating a …
    Continue reading

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 2,484 other followers

Follow me on Twitter

ToadWorld Pro of the Month November 2013