Book description
SQL server is the most widely used database platform in the world, and a large percentage of these databases are not properly secured, exposing sensitive customer and business data to attack.
In Securing SQL Server, 2e, readers learn about the potential attack vectors that can be used to break into SQL server databases as well as how to protect databases from these attacks. In this book written by Denny Cherry, a Microsoft SQL MVP and one of the biggest names in SQL server today, readers learn how to properly secure a SQL server database from internal and external threats using best practices as well as specific tricks the authors employ in their roles as database administrators for some of the largest SQL server deployments in the world.
"Denny Cherry is what would happen if Bill Gates and AC/DC got together to create a sibling. He's a bare-knuckles, no holds-barred technologist, and you can bet that if he tells you that something does or doesn't work, he's speaking from experience. Active in the community, his passion is sharing. You'll enjoy this book."--Buck Woody, Senior Technology Specialist, Microsoft
- Presents hands-on techniques for protecting your SQL Server database from intrusion and attack
- Provides the most in-depth coverage of all aspects of SQL Server database security, including a wealth of new material on Microsoft SQL Server 2012 (Denali)
- Explains how to set up your database securely, how to determine when someone tries to break in, what the intruder has accessed or damaged, and how to respond and mitigate damage if an intrusion occurs
Table of contents
- Cover image
- Title page
- Table of Contents
- Copyright
- Acknowledgements
- Dedication
- Author Biography
- About the Technical Editor
- Introduction
- Chapter 1. Securing the Network
- Chapter 2. Database Encryption
- Chapter 3. SQL Password Security
-
Chapter 4. Securing the Instance
- What to Install, and When?
- SQL Authentication and Windows Authentication
- Password Change Policies
- Auditing Failed Logins
- Renaming the SA Account
- Disabling the SA Account
- Securing Endpoints
- Stored Procedures as a Security Measure
- Minimum Permissions Possible
- Instant File Initialization
- Linked Servers
- Using Policies to Secure Your Instance
- SQL Azure Specific Settings
- Instances That Leave the Office
- Securing “Always On”
- Securing Contained Databases
- Summary
- Chapter 5. Additional Security for an Internet Facing SQL Server and Application
- Chapter 6. Analysis Services
-
Chapter 7. Reporting Services
- Setting up SSRS
- Service Account
- Web Service URL
- Database
- Report Manager URL
- E-mail Settings
- Execution Account
- Encryption Keys
- Scale-Out Deployment
- Logging onto SQL Server Reporting Services for the first time
- Security within reporting services
- Reporting services authentication options
- Report server object rights
- Summary
- Chapter 8. SQL Injection Attacks
- Chapter 9. Database Backup Security
- Chapter 10. Storage Area Network Security
- Chapter 11. Auditing for Security
-
Chapter 12. Server Rights
- SQL Server service account configuration
- OS rights needed by the SQL Server service
- OS rights needed by the DBA
- OS rights needed to install service packs
- OS rights needed to access SSIS remotely
- Console Apps must die
- Fixed-server roles
- User defined server roles
- Fixed database roles
- User defined database roles
- Default sysadmin rights
- Vendor’s and the sysadmin fixed-server role
- Summary
- Chapter 13. Securing Data
- Appendix A. External Audit Checklists
- Index
Product information
- Title: Securing SQL Server, 2nd Edition
- Author(s):
- Release date: July 2012
- Publisher(s): Syngress
- ISBN: 9781597499521
You might also like
book
Securing SQL Server
Securing SQL Server: Protecting Your Database from Attackers provides readers with the necessary tools and techniques …
book
Securing SQL Server, 3rd Edition
SQL server is the most widely-used database platform in the world, and a large percentage of …
book
Microsoft SQL Server 2014 Unleashed
The industry’s most complete, useful, and up-to-date guide to SQL Server 2014. You’ll find start-to-finish coverage …
book
Exam Ref 70-765 Provisioning SQL Databases, First Edition
Prepare for Microsoft Exam 70-765–and help demonstrate your real-world mastery of provisioning SQL Server databases both …