Certificates

Security

SQL Server Vulnerabilities

A remote code execution vulnerability affects 200 and 2005.

Using the Service Audit Object in SQL Server 2008

Brian Kelley looks at auditing in this article about SQL Server 2008 and the enhancements made in this version. The new Audit Object allows you to more easily determine what is happening on your SQL Server instance.

How do I assign permissions to users to see SQL Agent Jobs?

You can give your users rights to check if reports have run or jobs are complete without granting full admin rights. Here's how you can do so by using SQLAgentReaderRole in SQL Server

MSIE 0-day Spreading Via SQL Injection

Announcement of MSIE issue.

Configuring Kerberos Authentication

Longtime author Brian Kelley brings us a new article on security and Kerberos authentication in SQL Server.

Database Security

Security

Connecting to SQL Server with a Bad Logon Trigger

One of the things you need to aware of is that if you create a logon trigger and there is some bad code you are going to prevent everyone from logging into your SQL Server, even if you try as "sa" or a member of the sysadmin fixed server role. How do I log on to my SQL Server to fix this trigger?