October 2, 2002 at 8:51 am
Hello All,
I am new to this forum and also new as SQL server Admin. I was mainly in Oracle.
Here is my questions.
What are the security policies that most DBA would follow? In my new job they had never changed SA password for some servers. I don't think that's very usual. I see that most of the people use one user and that user has sysadmin role.
Any suggestions about security would be appreciated.
Thanks.
October 2, 2002 at 9:04 am
Brian Knight has written an article giving 10 steps on how to secure your SQL Server:
http://www.sqlservercentral.com/columnists/bknight/10securingyoursqlserver.asp
Another good resource is Chip Andrews' SQLSecurity.com site. Here's the link to the checklist he gives:
http://www.sqlsecurity.com/DesktopDefault.aspx?tabindex=3&tabid=4
K. Brian Kelley
http://www.truthsolutions.com/
Author: Start to Finish Guide to SQL Server Performance Monitoring
http://www.netimpress.com/shop/product.asp?ProductID=NI-SQL1
K. Brian Kelley
@kbriankelley
October 2, 2002 at 9:39 am
Tough question. I always set passwords and in this current job, we use NT Auth whereever possible.
In addition we use roles as much as possible, apply patches, firewall off the databases, etc.
Unfortunately, we do not change db passwords as often as I would like.
Steve Jones
October 2, 2002 at 10:15 am
Thanks, This helps. Specially those 2 articles were really useful. Hopefully I will be able to put a security policy in place.
and Yes, I just found this site a week ago (since I never bothered much about SQL server when I was working with Oracle) And This site is really helpful.
Thanks.
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply