September 2005 - Posts

SQL Server 2005: A look at the master keys - part 2

This is a continuation of a previous post , in which I discussed the service master key (SMK) and the database master keys. I mentioned in that post that a new encryption will be added to the SMK and I will describe it in this article. Also, a few things Read More...

Posted 30 September 05 10:51 by lcris | 14 Comments   
Filed under SQL Server - cryptography, SQL Server, computer security, encryption

SQL Server 2005: How to fix outdated names of Windows logins

The SQL Server login catalogs store the names of Windows principals as well as their SIDs. Because the names are stored, changes that affect a name can lead to a state where a catalog entry is out of sync with the current login name. For example, in the Read More...

Posted 27 September 05 10:34 by lcris | 0 Comments   
Filed under SQL Server - general, SQL Server

SQL Server 2005: An example of writing a CLR function that wraps the LookupAccountSid WinAPI call

I was looking recently into writing a wrapper for the LookupAccountSid WinAPI function, so that I could use this functionality in T-SQL. I decided to write a CLR function and document the steps here: 1. First, we need to write the code into a file - I Read More...

Posted 26 September 05 03:51 by lcris | 1 Comments   
Filed under SQL Server - general, SQL Server

SQL Server 2005: Comments about cryptographic keys and their encryptions

I want to collect here some basic facts about the encryptions of the various cryptographic keys in SQL Server 2005: - a database master key (DbMK) must always have at least one password encryption, but it can have more than one. Also, by default, the Read More...

Posted 23 September 05 04:42 by lcris | 0 Comments   
Filed under SQL Server - cryptography, SQL Server, computer security, encryption

An example for setting database mirroring in SQL Server 2005

I am not a database mirroring expert, but a while ago I have set up database mirroring between two of my machines. I collected the steps that I followed in the following script: -- This script illustrates how to setup database mirroring between two machines. Read More...

Posted 14 September 05 10:45 by lcris | 2 Comments   
Filed under SQL Server - general, SQL Server

Search

This Blog

• Home
• About

Tags

• announcements
• basic SQL Server security concepts
• bing
• computer security
• encryption
• Microsoft products
• search engines
• software engineering
• SQL Server
• SQL Server - cryptography
• SQL Server - general
• SQL Server - security

Archives

• October 2009 (3)
• August 2009 (2)
• July 2009 (1)
• June 2009 (1)
• August 2008 (2)
• June 2008 (1)
• May 2008 (1)
• April 2008 (1)
• March 2008 (1)
• February 2008 (5)
• January 2008 (4)
• November 2007 (2)
• October 2007 (4)
• September 2007 (3)
• July 2007 (1)
• April 2007 (2)
• March 2007 (1)
• February 2007 (2)
• December 2006 (1)
• November 2006 (1)
• October 2006 (3)
• July 2006 (2)
• May 2006 (1)
• April 2006 (2)
• March 2006 (2)
• January 2006 (1)
• December 2005 (5)
• October 2005 (3)
• September 2005 (5)
• July 2005 (1)
• June 2005 (4)

Security related links

• NSA Security Configuration Guides
• Bruce Schneier's blog
• Bruce Schneier's Crypto-Gram newsletter
• RISKS Digest

Software engineering links

• Motley says

SQL Server security links

• Raul Garcia's blog (SQL Server Security)
• SQL Server Security Team blog
• SQL Server Security forum on MSDN
• SQL Injection Watch List

Useful Microsoft links

• Product Feedback site
• Microsoft Technical Forums
• Security Vulnerabilities reporting site
• Security Development Lifecycle blog
• Secure Windows Initiative blog
• Microsoft Security Advisories

Syndication

• RSS 2.0
• Atom 1.0