sqlsunday.com

T-SQL tips and tricks, best practices and query plans from the field.

Skip to content
  • sqlsunday.com
    • About
  • Structured Concepts
    • Master data tool
    • Send passwords
  • Slack app
  • Presentations
  • Downloads
  • Checklists
    • Installing SQL Server 2014
    • Installing SQL Server 2016
    • Installing SQL Server 2017
    • Installing SQL Server 2019
    • Installing SQL Server 2022
    • Links and utilities
Search

SQL Server security

The SQL Server security model, part 2: securables

2014-07-272014-08-04 / Daniel Hutmacher / 6 Comments

Continuing on last week’s post on security principals, this week’s installment in the series on SQL Server security takes a look at securables.

Continue reading →

The SQL Server security model, part 1: principals

2014-07-202014-07-28 / Daniel Hutmacher / 5 Comments

There are a number of layers in the SQL Server security model, giving you a nearly infinite number of ways to set up access control on your server and databases. Security is a huge topic, and there are literally entire books on it, so this series of articles is designed to give you just a quick overview of the SQL Server security model to get you started.

In this first installment, I’ll go through the different types of security principals that are available, as well as how they connect to each other.

Continue reading →

Moving objects between schemas

2013-10-202014-06-25 / Daniel Hutmacher / Leave a comment

Basic model changes when you’ve built your solution can be tricky, because they can require redesigning or rebuilding an entire solution. Sometimes, though, the solution can be pretty easy. Like changing an object’s schema, a task that can be done using the ALTER SCHEMA statement.

Continue reading →

A short introduction to application roles

2013-04-212014-06-25 / Daniel Hutmacher / 1 Comment

Application roles provide a practical way to assign application-specific permissions in your database and to make sure that your applications always use a defined login. Not to be confused with actual roles, application roles are more like users in the database.

Continue reading →

Decrypting SQL objects

2013-03-242018-07-15 / Daniel Hutmacher / 4 Comments

Ever wished you could decrypt a database object in SQL Server? The good news is, you can, even in newer versions of SQL Server! This article will take you through the basics of how to decrypt a database object, and it will hopefully give you some deeper knowledge of how encrypted objects are stored in the database, and how to access them.

Continue reading →

Locked out from SQL Server?

2013-03-242017-10-06 / Daniel Hutmacher / Leave a comment

When you install SQL Server, you need to specify what account(s) or group(s) that you want to give administrative privileges. Way back when, it would be sufficient to be a local administrator on the Windows machine running the SQL Server service, but not any more.

Luckily, there’s a solution.

Continue reading →

A short post on SQL injection.

2013-03-172016-04-09 / Daniel Hutmacher / Leave a comment

Whenever you run dynamic SQL code from an application or in a stored procedure, make sure you clean (called “escaping” in developer-speak) all those apostrophes and semicolons, or you may find yourself on the business end of an SQL injection.

Continue reading →

Posts navigation

Newer posts →
Microsoft Most Valuable Professional
  • Mastodon
  • WordPress
  • LinkedIn
  • Twitter
  • Facebook
  • GitHub
  • RSS Feed

Search

Categories

  • By difficulty (201)
    • Advanced (42)
    • Basics (58)
    • Intermediate (103)
  • CLR (1)
  • Code review (1)
  • Datasets (1)
  • Off-topic (14)
  • Rant (6)
  • Scripts (20)
  • Series (33)
    • Efficient data (10)
    • Introduction to T-SQL (1)
    • Slowly changing dimensions (5)
    • SQL Server security (17)
  • SQL Server concepts (85)
  • T-SQL (148)
  • Tips (59)
  • Uncategorized (1)
  • Videos (2)
Daniel Hutmacher, Structured Concepts AB

SQL SERVER HELP YOU CAN DEPEND ON.

Need SQL Server help?

At Structured Concepts, we specialize in SQL Server development and performance tuning, as well as technical training for users and developers.

Visit our homepage at strd.co.

Mastodon
Create a website or blog at WordPress.com
  • Follow Following
    • sqlsunday.com
    • Join 184 other followers
    • Already have a WordPress.com account? Log in now.
    • sqlsunday.com
    • Customize
    • Follow Following
    • Sign up
    • Log in
    • Report this content
    • View site in Reader
    • Manage subscriptions
    • Collapse this bar