Security

External Article

Configuring Certificate-based Authentication in SQL Server Express' Distributed Service Broker Environment

  • Article

Implementing a dialog between two services residing in a distributed environment requires the presence of an authentication mechanism. Windows-based Kerberos protocol limits the scope of systems participating in a Service Broker dialog to those residing in the same or trusted Active Directory domains. This article provides an overview of how to eliminate this limitation by employing certificates.

2008-11-03

2,198 reads

External Article

Encryption Alternatives

  • Article

Databases often contain sensitive information and cell-level encryption is a very effective method to protect this information from those who should not have access to it. Although, encryption is not without its challenges.

2008-10-29

3,815 reads

Technical Article

Cryptography in SQL Server

  • Article

This white paper presents an overview of cryptographic functionality and discusses how this applies to authentication, signed procedures, permissions, and encryption. Because the target audience is the database professional and not necessarily security experts, the focus is on practical ways to use cryptography in SQL Server.

2008-09-26

3,859 reads

External Article

Configure MaxTokenSize for SQL Server Authentication

  • Article

DBA's and web developers at our company are experiencing issues with connecting to SQL instances using SQL Server Management Studio and other SQL tools using Windows Integrated Authentication. Our company is large, with well over 70,000 users and groups in Active Directory. When we look in the NT event log on the SQL Server we see both MSSQL and Kerberos errors. What could be causing this?

2008-08-25

3,296 reads

Technical Article

Recover from a SQL Injection Attack on SQL Server

  • Article

Lately it seems like SQL Injection attacks have been increasing. Recently our team has worked through resolving a few different SQL Injection attacks across a variety of web sites. Each of these attacks had a number of similarities which proved to point back to the same source. With this information in hand, the resolution should be much quicker. As such, if your web site is attacked with SQL Injection, how should you address it? How can the identification, analysis, recovery and resolution be streamlined? What are some lessons learned?

You rated this post out of 5. Change rating

2008-08-22

4,820 reads

Blogs

T-SQL Tuesday #185–Being a Video Star

By

This month we have an interesting invite. Erik Darling is the host, and since...

Building Resilience: Leadership Insights from Sports

By

In the bustling world of sports, leadership appears as a beacon of hope and...

T-SQL Tuesday 185 - Produce a Video!

By

T-SQL Tuesday is a monthly blog party hosted by a different community member each...

Read the latest Blogs

Forums

t-SQL help..

By tran008

I have the following...anyone can point me the right direction to rewrite this code?...

install sql express

By sqlfriend

I yesterday dowload a sqlexpress and intalled on one of a testing database for...

The User Login

By Steve Jones - SSC Editor

Comments posted to this topic are about the item The User Login

Visit the forum

Question of the Day

The User Login

When I create a user in a SQL Server 2022 database, on which types of logins in the master database can it be based?

See possible answers