Tuesday, June 28, 2016

DBA Security Advisor is Now Out!

Today is big day. Today, DBA Security Advisor is finally released!

It has been a long journey. Two years of research, development, testing, QA, and the list goes on!

I work with SQL Server for more than 11 years and I have seen hundreds of SQL Server installations and setups. I have seen best practices and bad practices. I have seen deep knowledge in administering SQL Server, but I have also seen naivety in administering such a powerful RDBMS and believe me, naivety in database administration is not something good.

SQL Server is a very powerful data platform and part of this power, is to allow the user to control different settings, thus making it work the best for his/her needs. However, similarly as in all systems, if these settings are misconfigured, or the proper precautions are not taken on the user’s side, then this could create possible security risks.

Take for example, the ‘Password Expiration’ option. In case you have a SQL login which is used as a service account, then this could be a reason for not to have the ‘Password Expiration’ enabled for that login. If however, you have an SQL login which is used by a physical person and the ‘Password Expiration’ option is not enabled, this increases the risk of having the password guessed more easily than in the case where the password expires every X days (i.e. every 90 days).

Another example, is using the same password as the username for SQL Logins. This is a critical security risk and you should never do this.

DBA Security Advisor, via a rich set of security checks, assesses your SQL Server instances against potential security risks and recommends solutions along with remediation scripts and methods.

Download the Community Edition today! Feel free to try DBA Security Advisor! After you are convinced that it can really help you, then you can consider upgrading to the Enterprise Edition where you can have access to all the security checks as well as to all the great features of DBA Security Advisor.





Reference: The SQL Server and .NET Hub (http://www.sqlnethub.com)



Resources:



Cheers,
Artemakis



[Ad]
Easily secure your SQL Server instances! Try out DBA Security Advisor!
DBA Security Advisor for SQL Server by SQLArtBits
DBA Security Advisor was developed by SQLArtBits. The tool was being carefully developed for an entire year and it contains comprehensive security checks and recommendations based on proven SQL Server security best practices. Feel free to download and use the Community Edition which is free and if you find it useful, you can consider upgrading to the Enterprise Edition!

Artemakis Artemiou [MVP]

Author & Editor

Artemakis Artemiou is a Senior SQL Server Architect, Software Developer and Microsoft Data Platform MVP. He is also an author, regular blogger, president of Cyprus.NET User Group and CY Country leader of INETA-EU. He is also the creator of DBA Security Advisor and In-Memory OLTP Simulator. Artemakis is a frequent guest author of worldwide well-respected online journals where he writes articles focusing on many SQL Server topics.

Reference: The SQL Server and .NET Hub (http://www.sqlnethub.com)

0 comments: