Chapter 5

SQL Password Security

Abstract

This chapter talks about the best practices for creating strong passwords, and ways to deploy your application and protect the potentially sensitive information within the connection string.

Keywords

encryption

hashing

HBA

MPIO

transparent data encryption

IP security

Information in this chapter

• Login types

• SQL server password security

• Strong passwords

• Password change policies

• Renaming the “SA” account

• Disabeling the “SA” account

• Users versus logins

• Contained database users in SQL server 2012 and beyond

• Schemas

• Encrypting client connection strings

• Application roles

• Using windows domain policies to enforce password length

• Contained users

Login Types

Any person or application ...

Get Securing SQL Server, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Securing SQL Server, 3rd Edition by Denny Cherry

SQL Password Security

Abstract

Keywords

Login Types

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly