SQL Server with Mr. Denny:

Exploit

1

August 2, 2012  4:00 PM

Sensitive Data Must Be Encrypted



Posted by: Denny Cherry
Data Encryption, Data Loss, Data Security, Database Administration, Database Design, Database security, Encryption, Exploit, Hashing, Security, SQL, SQL Server

The title of this post pretty much says it all.  If you store sensitive data in a database you have to work under the assumption that someone is going to try and break into the system and steal that data.  Thinking otherwise simply isn’t responsible as the developer and/or administrator of the...

July 30, 2012  4:00 PM

Why is SQL Injection still a problem?



Posted by: Denny Cherry
Data Loss, Data Security, Database Administration, Database security, Exploit, Security, SQL, SQL Server

SQL Injection is probably the most popular attack vector for hackers when they attempt to break into databases.  The reason for this is that it is so easy for an attacker to gain access to the system, and typically to get pretty high level permissions to a database engine so that they can then...


December 23, 2008  11:30 PM

sp_replwritetovarbin Heap Overflow Code Exploit Code In The Wild, Works By Using Our Good Friend SQL Injection



Posted by: Denny Cherry
Denis Gobo, Exploit

For those living under a rock there is a new SQL exploit in the wild. Dennis did an excellent write up of it already so I'll refer you do <. for his entry and save myself the time of writing what has already been...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: