IT Answers » SQL Server security

Is there a way to find out when a patch was last applied to an instance?

Mrhr2461 — Tue, 04 Oct 2011 14:20:27 +0000

Is there a way to find out the date a SQL Server instance was last patched? I need to keep track of dates each of my instances had a patch applied whether it be a security patch, hotfix or service pack. I looked in the ServerProperty function but did not see anything that would return this information. Any insights on how to get this info from SQL 2000, 2005 or 2008 would be greatly appreciated.

Thanks.

SQL Injection in my network

ML3 — Tue, 16 Aug 2011 18:40:15 +0000

How can I protect against SQL injections and remove the injection point? Also, how can I remove an injection that my antivir has detected? My computer is running extremely slow and I’d like to know what information has been compromised.

Name Pipe work arounds in SQL 2005 database

greatjubee — Fri, 29 Jul 2011 00:41:07 +0000

I am working on a SQL 2005 data base, the supplirer is telling me that the reason I am unable to find the SQL Data Base when i run there Client install software through a VPN connection is that the Name Pipes are keeping the Data base from being accessed.

Can anyone herlp me with this issue I bleive ther should be a work around so I can access the data base, hopeing someone can help me resolve this issue.

VPN Hollander Powerlink Server issues

greatjubee — Fri, 08 Jul 2011 03:34:00 +0000

I set up a VPN connection to our Hollander Powerlink Server when I try to set up the client software I get and error message unable to validate the power link server. I have all the drivers mapped on the client machine.

during set up I try to map the SQL but I am having trouble making the connection to the server.

Please help as this is driving me crazy.

I want to create backup of SQL database and set a password.

Raviraj123 — Thu, 07 Apr 2011 07:15:58 +0000

HEllo All
i want to create backup of SQL database and want to set Password that anyone who restore this backup after that it cant be able to restore database without knowing perticular Password …. is this Possible….?
if Yes please tell me How…?

Thanking You
Raviraj

Free IT Book: Securing SQL Server by Mrdenny!

MelanieYarbrough — Mon, 28 Mar 2011 20:31:39 +0000

This week’s free IT book is especially exciting because it was written by Denny Cherry, who you may know better as mrdenny. He’s always providing quality and thoughtful answers, and we’re excited to share a whole compilation of his knowledge in Securing SQL Server: Protecting Your Database from Attackers. Denny is a Microsoft SQL Server MVP, and you will learn about potential attack vectors that can be used to break into your SQL Server, and the ways to protect yourself against these attacks.

There are two ways to win this book: Answer one of the questions below and posting the link to your answer in the discussion section below. Or approve an answer that solved a question you asked and post the link in the discussion area below. Either of these methods will enter you into the drawing for the the book. Good luck!

Open IT Forum: What does your setup look like?

ESXi host in path between the switch and the router

SQL Server 2008 insert into vs. insert statement recompile

Open IT Forum: Tips for Windows 7 Use

BRMS control group failing to backup

SQL Server and AntiVirus

Rick Martinez — Fri, 18 Feb 2011 16:46:35 +0000

We have many sql server running on seperate boxes, the Network team wants to install antivirus software on all the sql servers. Is that a good idea? Why?

DBCCShrinkDatabase as Security Cleanup Measure?

KansasCoder — Sat, 22 Jan 2011 21:38:43 +0000

Recently a private document wasposted to a publicly accessible SharePoint site. The file was deleted and removed from the search index by running an intermediate crawl of the content database. Now the client wants to shrink the database, which is just under a 1Tb in size and sits on a SAN, claiming that this will insure the file is gone. From what I’ve learned so far this is not guaranteed to really overwrite the address space marked as recoverable. Is there any validity to the notion that shrinking a db is a good way to truly remove the file from Sql Server 2005 (or any sql server maybe) and is there a better method to inusre that a file is truly gone at the byte level?

Adding another level of security to SQL 2005 database

NewnanIT — Thu, 30 Dec 2010 16:17:40 +0000

We have a SQL 2005 Database. It is protected by Windows Authentication. Can we add another level of security – requiring a SQL username and password along with a valid user name and password on the domain?

How to create data security in SQL server 2005 so that the code will not be opened

Gkhlhlhjhhghgg — Mon, 13 Dec 2010 09:52:01 +0000

how to create data security in sql server 2005 so that the code will not be opened