Article: recommended minimum security audit definition for database systems, using Microsoft #SQLServer as example: Audit every change to the system’s security configuration. andreas-wolter.com/en/202507_reco…
Es gibt einige wirklich kritische Sicherheits-bugs in SQL Server, die mit dem letzten Security Patch gefixt werden. Unbedingt beachten!
Important Security fixes for #SQLServer 2016–2022: 5 CVE’s of type Elevation of Privilege Vulnerability. Ranging from #SQLInjection via system procedures to permission adjustments and easy to implement. Secure your systems: msrc.microsoft.com/update-guide/v…
Published a more elegant and straightforward solution for auditing access to specific data in Microsoft #SQLServer and #AzureSQL, using Data Classification: andreas-wolter.com/en/202508_data…
andreas-wolter.com
How to Use Data Classification to Audit specific Data Access in SQL Server - Andreas Wolter
How to Use Data Classification to Audit specific Data Access in SQL Server - Andreas Wolter
Wichtiger Fund von @AndreasWolter: SQL Auditing (#SQLServer und #AzureSQL Managed Instance) entdeckt bestimmte Berechtigungsänderungen nicht! Während wir auf einen Fix von Microsoft warten, Hinweise wie man damit umgehen kann im Artikel.
#SQLServer #security admins, attention: #Auditing is missing attempts to change permissions, leading to #repudiation and miss elevation attempts Please upvote for bug-fix andreas-wolter.com/en/2502-sql-au…
#SQLServer bietet verschiedene Verschlüsselungs-Technologien an. Andreas hat das Thema "Protecting data at rest" zusammengefasst und was man dabei bedenken sollte. Das Ergebnis, das TDE nicht unbedingt besser als Backup #Encryption ist, kommt für einige vielleicht überraschend.
New article> Protecting database data at rest: Comparing the different encryption methods SQL Server offers, regarding how well they protect data at rest, and why I don't push for #TDE everywhere. andreas-wolter.com/en/protecting-… #DataEncryption #DatSecurity
Daten und Unternehmens-Wissen schützen: Absichern der Datenübertragung zwischen #SQLServer und der Anwendung mit vertrauenswürdigen Zertifikaten. Auch in der Entwicklungsumgebung!
article: #TLS 1.2 and trusted certificates to encrypt data in transit for all SQL Servers, including development environments andreas-wolter.com/en/tls-trusted… #SQLServer #Encryption
andreas-wolter.com
Use TLS 1.2 and trusted certificates to encrypt data in transit for all SQL Servers, including...
Use TLS 1.2 and trusted certificates to encrypt data in transit for all SQL Servers, including...
latest article: Using Extended Events for Tracing #SQLServer and #AzureSQL DB in compliance with Principle of Least Privilege - Example role separation andreas-wolter.com/en/extended-ev… #PolP #DataSecurity
Liebe Kunden: Bitte patcht eure #SQLServer. Patching ist eines der 3 wirksamsten Mittel gegen Cyberattacken.
Multiple Security Updates for #SQLServer: 3 vulnerabilities for Elevation of Privileges with high impact potential have been found in the engine alone and an additional 9 vulnerabilities for Remote Code Execution and Information Disclosure in Machine Learning Services. Fixes are…
Vom 7. bis 10. Oktober ist @AndreasWolter, der Gründer von Sarpedon Quality Lab und einer von nur 7 Microsoft Certified Master der Data Platform auf den #SQLDays endlich wieder in Deutschland anzutreffen
Workshop “Praktisches Performance Monitoring & Troubleshooting für #SQLServer” am 10. Oktober auf den #SQLdays in Erding/Germany andreas-wolter.com/workshop-prakt…
Wer einen technischen deep dive workshop mit dem einzigen Microsoft Certified Master für #DataPlatform sucht: hier ist die einmalige Gelegenheit, zum ersten Mal seit 6 Jahren wieder in Deutschland, auf den #SQLdays bei München.
Am 10. Oktober gebe ich nach langer Zeit wieder einen praktischen workshop zu Performance Monitoring unter #SQLServer in Deutschland: Im Rahmen der #SQLDays Konferenz in Erding bei München: Practical Performance Monitoring & Troubleshooting SQL Server. Der Clou: Die Teilnehmer…
Sarpedon Quality Lab ist nun offiziell auch in den USA firmiert :-) Das wird insbesondere für unsere Managed Services Kunden interessant sein. @AndreasWolter ist also in der amerikanischen Zeitzone für uns da.
Happy to share that I founded Sarpedon Quality Lab LLC here in the US. It will come to no surprise, that I will continue the great partnership with @SQL_de, which I founded 2009 in Germany.
We can confirm that from what we are seeing on systems that we monitor. All security measures matter. Create perimeters and do the fundamentals. #cybersecurity
Hackers from Russia’s Foreign Intelligence Agency (SVR) are no longer disengaging from a computer environment once they are discovered but are doubling down, according to Brad Smith, vice chairman and president of Microsoft | rferl.org/a/microsoft-se… @RFERL
The reactions and interest about my resignation in the #Azure Data Security org have been overwhelming, so I decided to write a bit more about it: andreas-wolter.com/en/resigned-pr… #ProgramManagement #DataSecurity #AzureSQL #Microsoft
Thanks for giving me the opportunity to speak about #DataSecurity for #SQLServer and #AzureSQL in my new home base with a very engaged audience.
The latest Data Exposed video with a summary of the #DatabaseSecurity functionalities introduced in 2023 for #SQLServer and #AzureSQL
Interesting article from @Kendra_Little: Microsoft is Breaking Database Compatibility Levels for #SQLServer and #AzureSQL Managed Instance: littlekendra.com/2023/12/18/how…
kendralittle.com
Microsoft is Breaking Database Compatibility Levels for SQL Server
According to Microsoft’s documentation, “Database compatibility level … allow[s] the SQL Server Database Engine to be upgraded while keeping the same functional status for connecting applications by...
New blog post: How Many Features are Missing from Azure SQL Managed Instance? littlekendra.com/2023/12/08/wha…
We enhanced SQL #Auditing with support for OBO access request from middle tier applications #DatabaseSecurity #AzureSQL techcommunity.microsoft.com/t5/azure-sql-b…
Microsoft #SQLServer 2022 certified by #CommonCriteria EAL4 techcommunity.microsoft.com/t5/sql-server-… #DatabaseSecurity
Delegating permission management using Roles vs the WITH GRANT OPTION techcommunity.microsoft.com/t5/azure-sql-b… #SQLSecurity #DatabaseSecurity #SQLServer #AzureSQL
techcommunity.microsoft.com
Delegating permission management using Roles vs WITH GRANT OPTION | Microsoft Community Hub
Comparing 2 methods for delegating permission management with T-SQL
United States 趨勢
- 1. Bengals 33.6K posts
- 2. Ace Frehley 58.7K posts
- 3. Aaron Rodgers 12.5K posts
- 4. #911onABC 12.8K posts
- 5. Chase Brown 3,086 posts
- 6. Cuomo 45K posts
- 7. Flacco 13.8K posts
- 8. #HereWeGo 6,279 posts
- 9. Bolton 163K posts
- 10. Mookie 7,605 posts
- 11. #TNFonPrime 2,227 posts
- 12. Asheville 11K posts
- 13. RIP Spaceman 1,997 posts
- 14. Yoshi 20K posts
- 15. Sliwa 19K posts
- 16. athena 11.8K posts
- 17. #PITvsCIN 1,748 posts
- 18. #NYCMayoralDebate 1,108 posts
- 19. Space Ace 2,235 posts
- 20. Glasnow 4,441 posts
Something went wrong.
Something went wrong.