SQL Server with Mr. Denny:


December 27, 2007  8:00 AM

Avoiding SQL Injection Attacks

Posted by: Denny Cherry
Attack Prevention, Security, SQL, T/SQL

The most common way for people to insert invalid data or cause damage to your database is through what is called a SQL Injection Attack.  This is when malicious code is placed within the responses which are expected and that code is not caught and it instead executed.  Depending on what level of...

December 19, 2007  8:00 AM

Microsoft SoCal Code Camp Comming Up

Posted by: Denny Cherry
Development, In Person Events, SQL, SQL Server 2008

The Microsoft Code camp is coming upon us shortly. I've submitted three sessions (so far) to the organizers of the code camp.  They've told me that odds are I'll be able to do all three sessions.  I've tagged all my sessions with

Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 15, 2007  5:38 AM

New Article: SQL Server encryption vs. hashing for data security

Posted by: Denny Cherry
Article, Data Types, Development, SQL, SQL Server 2005, SQL Server 2008, T/SQL

I've published a new tip over on SearchSQLServer.com entitled "   Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 13, 2007  8:00 AM

So what’s the difference between null and a blank field

Posted by: Denny Cherry
Data integrity, Data Types, NULL, SQL, T/SQL

There is always a discussion going on somewhere over having NULL values in a database.  Some people (such as myself) are fine with NULL values.  Some people don't like having NULL values in there database for some reason.  I've heard all sorts of reasons; "The screw up performance", "They are...

December 10, 2007  8:00 AM

Temp Tables, Table Variables, and CTEs

Posted by: Denny Cherry
CTE, SQL, T/SQL, Table Variables, Temp Tables

There are some major differences between temp tables, table variables and common table expressions (CTEs).  Some of the big differences are: Temp Tables vs. Table Variables

  1. SQL Server does not place locks on table variables when the table variables are used.
  2. Temp tables...

November 28, 2007  7:38 AM

What’s up with the N in front of string values?

Posted by: Denny Cherry
Data Types, SQL, Uni-code

If you have looked at pretty much any Microsoft provided T/SQL code you have probably seen an N in front of a string value when setting a variable much like this. SELECT * FROM...

November 26, 2007  7:35 AM

Should I be using uni-code data types?

Posted by: Denny Cherry
Data Types, SQL, Uni-code

The path that Microsoft is going says yes.  They are moving all there samples and defaults to using uni-code.  In reality uni-code may not be needed in your environment.  If you are storing only Latin characters (the US alphabet characters) then you probably don't need to store uni-code...

November 19, 2007  8:00 AM

Microsoft Announces SQL Server 2008 November CTP

Posted by: Denny Cherry
Beta, SQL, SQL Server 2008

Microsoft announced at TechEd in Barcelona, Spain that the SQL Server 2008 November CTP would be made available this month.  Read more here. ---> Update... Microsoft...

November 15, 2007  7:23 PM

New tip published: Update SQL Server table statistics for performance kick

Posted by: Denny Cherry
Article, SQL, Statistics, T/SQL

I've published a new tip over at SearchSQLServer.com entitled Update SQL Server table...

Bookmark and Share     0 Comments     RSS Feed     Email a friend

November 5, 2007  8:00 AM

What is the BACKUPTHREAD wait type?

Posted by: Denny Cherry
Recovery, SQL

If you have ever seen the BACKUPTHREAD wait type in the sysprocesses table or sp_who2 output and wondered what it is, I have found the answer. The basic explanation is "Used when waiting for a backup thread to complete.  Wait time may be very long (minutes, hours)."  Basically what this means...

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: