SQL Server with Mr. Denny:

SQL Injection


August 15, 2012  2:00 PM

Old Web Based Applications Need To Be Removed

Posted by: Denny Cherry
Data Loss, Data Security, Database, Database Administration, SELECT statement, SQL Injection, SQL Server, Stored Procedures

What happens to most obsolete web based applications at most companies?  They sit idle on a web server for months, sometimes years.  Why is this a problem? Because many of these old applications can be easily exploited via SQL Injection allowing access into the SQL Server databases which they...

July 26, 2012  2:00 PM

Security Sessions at SQL PASS 2012

Posted by: Denny Cherry
Data Encryption, Data Loss, Data Security, Database, Database Administration, Database Design, Database security, Encryption, Security, SQL Injection, SQL PASS, SQL PASS 2012, SQL Server, SQL Server 2000, SQL Server 2005, SQL Server 2008, SQL Server 2008 R2, SQL Server 2012

The SQL PASS session list for the SQL PASS 2012 Summit has been released.  This year there are 192 sessions being presented at the SQL PASS summit.  Last year at the 2011 summit there were only a couple of sessions...

April 26, 2012  2:00 PM

Securing SQL Server 2nd Edition Coming Soon

Posted by: Denny Cherry
Amazon, Database security, Securing SQL Server, SQL Injection, SQL Server, SQL Server 2012

In case you missed my announcement earlier this week over on SecuringSQLServer.com... I'm pleased to be able to announce that the

January 2, 2009  8:46 PM

Mirroring isn’t a backup solution

Posted by: Denny Cherry
Backup & recovery, Database security, JournalSpace.com, SecurityFightClub, SQL Injection

In case you live under a rock and haven't heard about Journalspace.com's little mistake, they have gone out of business due to a database problem.  Here's a

October 1, 2008  11:00 AM

T/SQL Code to remove SQL Injection Values from your tables

Posted by: Denny Cherry
SQL Injection, T/SQL

With SQL Injection Attacks being all the rage these days, I've been asked a couple of times for T/SQL code to clean up the database. So I threw this code together to clean up the data. This code will clean all the character and uni-code columns in all the user defined tables in the system. ...

June 30, 2008  11:00 AM

New Article: Secure SQL Server from SQL injection attacks

Posted by: Denny Cherry
Attack Prevention, Security, SQL Injection

An article that I wrote about securing your SQL Server from SQL Injection attacks was just published.  It covers information from both a DBAs point of view and a .NET...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: