Search
Subscribe
Categories
- Backup and Restore
- Capacity Planning
- Compression
- Configure
- Contact me
- CPU
- Data Architecture
- Data Import and Export
- Database Mirroring
- DBA
- DBA Scripts
- DBCC
- Deadlocks
- Default Trace
- Development
- Disaster Recovery
- Disk Storage
- DMV
- Documentation
- Event Log
- Execution Plan
- Function
- High Availability
- Indexes
- Install & Setup
- Interviews
- IO Subsystem
- Isolation levels
- Jobs
- Latches
- Links
- Locking
- Memory
- Monitor Performance
- MS DTC
- MSDB
- Network
- Object Management
- Pagination
- Partitioning
- Performance
- Powershell
- Security Management
- SQL Agent
- SQL Azure
- SQL Blocking
- SQL Cachestore
- SQL DAC
- SQL Default Trace
- SQL DTS
- SQL Error Logs
- SQL Execution Plan
- SQL Optimizer
- SQL problems
- SQL Query Tuning
- SQL Server Error Tips
- SQL Server Management Studio
- SQL Server Profiler
- SQL Server Tuning
- SQL Trigger
- SQL View
- SQLServer-DBA News
- SSIS
- Statistics
- Stored Procedure
- T-SQL
- TempDB
- Tools
- TPC-H
- Transaction Logs
- View
- Virtualization
- Wait Stats
SQLServer-DBA.com Links
Recent Posts
- Forgotten sa password
- Sql server installation is either corrupt or has been tampered with error getting instance id from name
- Find Weak passwords in SQL Server
- Event ID 55 : The file system structure on the disk is corrupt and unusable on volume
- Career in DBA
- Error 3254 – The volume on device BACKUP_PATH is empty
- SQL auto close - Keep it turned off
- Windows Pagefile size for dedicated SQL Servers
- SQL Database Corruption
- max server memory and sql server memory – why is total memory greater than max memory?
15 February,2013 by Jack Vamvas
Question: What database security countermeasures can I apply to a SQL Server environment against potential hacker attacks? There is plenty of sensitive data in our systems such as personal details and financial information.
Answer: A well co-ordinated and regularly audited security checks is the best way forward. The tactics will depend on the amount of resources available and the level of security escalation required'.Here are some ideas:
1) Have you locked down all the systems on the network. ? Is there a well defined segregation of duties policy set up – where all authorised individuals have access? Prioritise production systems then work your way down.
Keep in mind , it’s not unusual to have production data on test or development systems.
2) Invest in a database vulnerability assessment tool. Focus on : security patches, strong passwords,security enabled, and proper access controls
3) Monitoring of access attempts. Do you audit failed login attempts? Do you have a daily Login failed report?
4) Do you have a SQL Server Security policy in place?
5) For advanced countermeasures , do you have a Database access monitoring system in place. A Database Access monitoring system will monitor the databases , and move the data onto a separate server therefore minimising the possibility of an a hacker deleting the activity.
Read More
SQL Server – Maintaining different environments - SQL Server DBA
Author: Jack Vamvas (http://www.sqlserver-dba.com)
Verify your Comment
Previewing your Comment
This is only a preview. Your comment has not yet been posted.
As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.
Having trouble reading this image? View an alternate.
Posted by: |