SQL Server with Mr. Denny:

Data Loss


January 15, 2014  2:00 PM

Fixing TempDB database problems when starting SQL using a minimum config



Posted by: Denny Cherry
Data Loss, Database, Database Administration, SQL, SQL Server, SQL Server 2005, SQL Server 2008, SQL Server 2008 R2, SQL Server 2012, SQL Server 2014, T/SQL, TempDB

So the other day I typo'ed something. Usually this isn't that big a deal, but in this case when fixing tempdb for a customer I told SQL to put two logical files into the same physical file. I was able to get it to let me do this because I first added the files, then realized that I had put them...

December 18, 2013  2:00 PM

Encryption and Compression



Posted by: Denny Cherry
Backup & recovery, BACKUP DATABASE, Data Loss, Data Security, Database, Database Administration, Database security, Indexing, Security, SQL Server, SQL Server 2008, SQL Server 2008 R2, SQL Server 2012, SQL Server 2014, Storage, Tables

We have a variety of options when it comes to compression and encryption in SQL Server. When using both compression and encryption you...


February 6, 2013  2:00 PM

When Designing Logon Systems, Pay More Attention To Password Questions.



Posted by: Denny Cherry
Data Loss, Data Security, Database Design, Database security, Identity theft, Laws, Lawyers, Lesson Learned, Mayhem, Phishing, Security, Social Commentary, SQL Server

In recent months the Internet has started to wake up to security just a little bit more, and probably forgotten all about it as well (read


November 17, 2012  2:00 PM

Backup Databases on Creation



Posted by: Denny Cherry
Backup & recovery, BACKUP DATABASE, CREATE TRIGGER, Data Loss, Database, Database Administration, DDL Trigger, Recovery, SQL Server, SQL Server 2008 R2, SQL Server 2012, T/SQL, Transactions, Trigger, xp_create_subdir

One of the companies which I work with has the occasion to create new databases when they do releases of their software.  Normally this isn't a problem, except that they are setup to use maintenance plans to handle the backup and pruning of their transaction logs.  As all the new databases are...


November 1, 2012  6:17 PM

Lugging fuel up stairs shouldn’t have been needed



Posted by: Denny Cherry
AlwaysOn, Data Loss, DataCenter, Distaster Recovery, Recovery, SQL Server

While I applaud the hard work and ingenuity of the sysadmins who works through the days after hurricane Sandy to keep the generators running, one thing kept coming to my mind.  Why...


October 10, 2012  9:00 AM

Encrypting data in the same column



Posted by: Denny Cherry
Data Encryption, Data Loss, Data Security, Data Types, Database, Database Administration, Database Design, Database security, Encryption, Identity theft, Security, SQL, SQL Server, SQL Server stored procedures, Stored Procedures, T/SQL, Tables

I wrote a little while ago about the fact that sensitive data needs to be encrypted within the database for all applications.  This is the first technique that is available to you to encrypt data...


August 15, 2012  2:00 PM

Old Web Based Applications Need To Be Removed



Posted by: Denny Cherry
Data Loss, Data Security, Database, Database Administration, SELECT statement, SQL Injection, SQL Server, Stored Procedures

What happens to most obsolete web based applications at most companies?  They sit idle on a web server for months, sometimes years.  Why is this a problem? Because many of these old applications can be easily exploited via SQL Injection allowing access into the SQL Server databases which they...


August 9, 2012  2:00 PM

Second Edition of Securing SQL Server now longer available for pre-order. It’s Shipping! (repost)



Posted by: Denny Cherry
AlwaysOn, Availability Groups, Azure, Data Loss, Data Security, Database Administration, Database security, Microsoft Windows, Security, SQL, SQL Server, SQL Server 2000, SQL Server 2005, SQL Server 2008, SQL Server 2008 R2, SQL Server 2012, Storage

In case you missed the blog post over on securingsqlserver.com, I wanted to repost it here... I'm afraid that I've got some bad news.  You can no longer pre-order


August 2, 2012  4:00 PM

Sensitive Data Must Be Encrypted



Posted by: Denny Cherry
Data Encryption, Data Loss, Data Security, Database Administration, Database Design, Database security, Encryption, Exploit, Hashing, Security, SQL, SQL Server

The title of this post pretty much says it all.  If you store sensitive data in a database you have to work under the assumption that someone is going to try and break into the system and steal that data.  Thinking otherwise simply isn’t responsible as the developer and/or administrator of the...


July 30, 2012  4:00 PM

Why is SQL Injection still a problem?



Posted by: Denny Cherry
Data Loss, Data Security, Database Administration, Database security, Exploit, Security, SQL, SQL Server

SQL Injection is probably the most popular attack vector for hackers when they attempt to break into databases.  The reason for this is that it is so easy for an attacker to gain access to the system, and typically to get pretty high level permissions to a database engine so that they can then...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: