Are the posted questions getting worse?
-
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.Oh god...
"The delete works sometimes"
... Surely, please, tell me this person is not being paid.
LIE TO ME!
This person is working in a volunteer position that does not pay.
This person is a guest lecturer at <insert name here> University and is doing it out of the free will and loving care of her heart.
This person works for a psychological study for which he is not being paid. The study is purely volunteer effort and studies the effects of millenials interacting with people who believe in working hard for their earnings. (Don't you guys really feel goated now?)
Thank you. That all made me feel so much better.
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore RooseveltAuthor of:
SQL Server Execution Plans
SQL Server Query Performance Tuning -
Eirikur Eiriksson (4/5/2016)
Sean Lange (4/5/2016)
Luis Cazares (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.I constantly avoid that person's threads. It doesn't matter if it seems like a simple problem, the lack of common sense is great on this one.
I am right there with you Luis. I refuse to even comment on one their threads. The level of sheer incompetence, unwillingness to attempt to think or learn, and the overall level of anger that we can't read their mind is beyond reproach. There are plenty of other people out there who actually need help because they are trying to figure it out and are willing to work at it.
Ditto
😎
Me too. Sean, you did a great job of summarizing it. I was really tempted to post a little while ago, but remembered the angst and frustration I felt the last time I helped them with something simple. It just isn't worth it. I now avoid them completely. I really hated to have a "blacklist" in the first place because I enjoy helping others, but there came a point when I just had to walk away.
-
Grant Fritchey (4/5/2016)
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.Oh god...
"The delete works sometimes"
... Surely, please, tell me this person is not being paid.
LIE TO ME!
This person is working in a volunteer position that does not pay.
This person is a guest lecturer at <insert name here> University and is doing it out of the free will and loving care of her heart.
This person works for a psychological study for which he is not being paid. The study is purely volunteer effort and studies the effects of millenials interacting with people who believe in working hard for their earnings. (Don't you guys really feel goated now?)
Thank you. That all made me feel so much better.
Heh - So if the volunteer teacher is also an unpaid volunteer for an psychological study, it make sense. When you hear about what the teachers are teaching in database classes nowadays, it helps it all come together.
-
Greg Edwards-268690 (4/5/2016)
So how big of a gap do you see using AD accounts locked to what they need with non- expiring passwords?These accounts are not able to change the password, and any failures are logged and reviewed.
This was for our DW, which had just Sales and Production numbers, no Salary, SSN, CC info, etc.
I'd think that in some environments, there can be more risk to the business with the churn of changing if you are doing some other audits and the account can still get locked out.
Password managers - in some respects - can be a honeypot.
As well as any account allowed to impersonate.
Thoughts?
Gap in.....? What? Effectiveness?
There are two things at play with security. What works in the real world and what people require. Standards, regulations, auditors often require changes. No way to get around that, just change the passwords.
In terms of effectiveness, there are tradeoffs. Using a fixed password, with limited, locked down accounts is fine, but it's also a honeypot. A longer term one, but I have seen passwords in place for years, which means that you have exposure there. If they're random, it's really low, and I have no problem with this technique.
Password managers do represent a potential issue, but by locking access down and following strict guidelines, like changing the db password whenever there is a person that leave the group, I'd argue that is very limited. Especially if you use the manager because you're changing passwords often.
There are always holes. I wouldn't be pedantic about this, but be practical in balancing the risks and tradeoffs.
-
Ed Wagner (4/5/2016)
Grant Fritchey (4/5/2016)
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.Oh god...
"The delete works sometimes"
... Surely, please, tell me this person is not being paid.
LIE TO ME!
This person is working in a volunteer position that does not pay.
This person is a guest lecturer at <insert name here> University and is doing it out of the free will and loving care of her heart.
This person works for a psychological study for which he is not being paid. The study is purely volunteer effort and studies the effects of millenials interacting with people who believe in working hard for their earnings. (Don't you guys really feel goated now?)
Thank you. That all made me feel so much better.
Heh - So if the volunteer teacher is also an unpaid volunteer for an psychological study, it make sense. When you hear about what the teachers are teaching in database classes nowadays, it helps it all come together.
Ding Ding Ding!!!!
Jason...AKA CirqueDeSQLeil
_______________________________________________
I have given a name to my pain...MCM SQL Server, MVP
SQL RNNR
Posting Performance Based Questions - Gail Shaw[/url]
Learn Extended Events -
Grant Fritchey (4/5/2016)
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.Oh god...
"The delete works sometimes"
... Surely, please, tell me this person is not being paid.
LIE TO ME!
This person is working in a volunteer position that does not pay.
This person is a guest lecturer at <insert name here> University and is doing it out of the free will and loving care of her heart.
This person works for a psychological study for which he is not being paid. The study is purely volunteer effort and studies the effects of millenials interacting with people who believe in working hard for their earnings. (Don't you guys really feel goated now?)
Thank you. That all made me feel so much better.
Good.
And the number one reason for this person not being paid:
S/he is an INTERN getting university credit while working at <insert notorious software vendor name here> on a government account!
(FTR - several vendors popped to mind long before thinking of the big blue machine)
Jason...AKA CirqueDeSQLeil
_______________________________________________
I have given a name to my pain...MCM SQL Server, MVP
SQL RNNR
Posting Performance Based Questions - Gail Shaw[/url]
Learn Extended Events -
Greg Edwards-268690 (4/5/2016)
Phil Parkin (4/5/2016)
Luis Cazares (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.I constantly avoid that person's threads. It doesn't matter if it seems like a simple problem, the lack of common sense is great on this one.
Usually, so do I. But this time ... it all seemed so simple. Will I ever learn?
Read error message, repeat same process. Repeat question.
It can be simple. Or is that simply predictable in some cases?
Fingers have a nail on them, which must be why they are easy to hit with a hammer.
Common sense, right?
I still get sucked in at times. You'd think I'd have learned after all the angst I have gone through with SS.
-
Steve Jones - SSC Editor (4/5/2016)
Greg Edwards-268690 (4/5/2016)
So how big of a gap do you see using AD accounts locked to what they need with non- expiring passwords?These accounts are not able to change the password, and any failures are logged and reviewed.
This was for our DW, which had just Sales and Production numbers, no Salary, SSN, CC info, etc.
I'd think that in some environments, there can be more risk to the business with the churn of changing if you are doing some other audits and the account can still get locked out.
Password managers - in some respects - can be a honeypot.
As well as any account allowed to impersonate.
Thoughts?
Gap in.....? What? Effectiveness?
There are two things at play with security. What works in the real world and what people require. Standards, regulations, auditors often require changes. No way to get around that, just change the passwords.
In terms of effectiveness, there are tradeoffs. Using a fixed password, with limited, locked down accounts is fine, but it's also a honeypot. A longer term one, but I have seen passwords in place for years, which means that you have exposure there. If they're random, it's really low, and I have no problem with this technique.
Password managers do represent a potential issue, but by locking access down and following strict guidelines, like changing the db password whenever there is a person that leave the group, I'd argue that is very limited. Especially if you use the manager because you're changing passwords often.
There are always holes. I wouldn't be pedantic about this, but be practical in balancing the risks and tradeoffs.
Passwords were very random, and there were other things in place that were monitored for any attempted usage.
And yes, in our case, it passed audit. Certainly not the case with some other systems and the data they contained.
Would have been a different story if at the time we exposed anything to the outside world.
Reality was, basically every employee had access to all our data anyways, so risk was low.
-
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
SQLRNNR (4/5/2016)
Grant Fritchey (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.Oh god...
"The delete works sometimes"
... Surely, please, tell me this person is not being paid.
LIE TO ME!
This person is working in a volunteer position that does not pay.
This person is a guest lecturer at <insert name here> University and is doing it out of the free will and loving care of her heart.
This person works for a psychological study for which he is not being paid. The study is purely volunteer effort and studies the effects of millenials interacting with people who believe in working hard for their earnings. (Don't you guys really feel goated now?)
Thank you. That all made me feel so much better.
Good.
And the number one reason for this person not being paid:
S/he is an INTERN getting university credit while working at <insert notorious software vendor name here> on a government account!
(FTR - several vendors popped to mind long before thinking of the big blue machine)
Information Bonkers Muddlers?
😎
-
And now the attitude arrives.
-
Lynn Pettis (4/5/2016)
And now the attitude arrives.Lynn, you should recognise this by now, not the third time this happens.
😎
-
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.
"I cant stress enough the importance of switching from a sequential files mindset to set-based thinking. After you make the switch, you can spend your time tuning and optimizing your queries instead of maintaining lengthy, poor-performing code."-- Itzik Ben-Gan 2001
-
Alan.B (4/5/2016)
Phil Parkin (4/5/2016)
Gail and I are gamely persevering with this one. I think my pressure limit has been reached now, though.
It hurts just watching this animation.
-
Lynn Pettis (4/5/2016)
And now the attitude arrives.Check out the most recent 'I am proficient ...' comment. I nearly regurgitated my breakfast cereal.
The absence of evidence is not evidence of absence.
Martin ReesYou can lead a horse to water, but a pencil must be lead.
Stan Laurel -
Good morning, peeps.
What are we having for breakfast today?
Mine was oatmeal with purple honey (from North Carolina) and assorted fruit. But for some reason I have pancakes and waffles with real maple syrup on my mind and I can't figure out why. So I'm pre-emptively accusing someone on The Thread of having the Good Stuff for breakfast and making me hungry again.
Viewing 15 posts - 53,386 through 53,400 (of 66,751 total)
You must be logged in to reply to this topic. Login to reply