A New Word: Lilo

Posted on December 27, 2024 by way0utwest

lilo– n. a friendship that can lie dormant for years only to pick right back up instantly, as if you’d seen each other last week – which is al the more remarkable given that certain other people can make every lull in conversation feel like an eternity.

I’m very lucky that I get to travel and meet so many people, and that I have the opportunity to see many of them time and time again at different events. I’m truly blessed in this way.

I have lilo with many people, close friends, good friends, casual acquaintances, even new-I-just-met-you-for-five-minutes-once friends.

With many people, when I see them again, we can pick up a conversation or a familiarity right away. I don’t have a great memory for names, which is why you might see my look at your name badge, but I remember faces well. When I was a bartender, I knew many people by what they drank, but few names.

In the tech world, I pick up friendships once a year with some people, less often with others. A quick story.

20241107_111414

I met Nate many years ago at the PASS Summit. I can’t remember if we met in the convention center or in the hotel up the hill, but we got to chatting and enjoyed a few minutes together. Since then, I’ve seen him at a number of Data Community Summits, and we always take time to stop and catch up and see how we’re doing.

I look forward to lilo every year, thinking I’ll get the chance to see Nate and get a hug, a picture, and a conversation. I’ve missed him the last couple of years, but was delighted to see him in 2024. I hope we both keep making the Summit or some other event until we both get to retire.

From the Dictionary of Obscure Sorrows

Posted in Blog | Tagged , | Comments Off on A New Word: Lilo

Republish: Choosing Sequences Over Identity

Posted on December 23, 2024 by way0utwest

It’s the start of the holiday season for me. I’m off all this week and a few next week, so I’m really done for the year.

You get to re-read Choosing Sequences Over Identity.

Posted in Editorial | Tagged | Comments Off on Republish: Choosing Sequences Over Identity

Monday Monitor Tips: CIS Compliant

Posted on December 23, 2024 by way0utwest

A new feature added to Redgate Monitor Enterprise automatically. CIS compliance is something many enterprises think about as their auditors use this as a benchmark.

If you’ve never looked at the Center for Internet Security, you ought to glance at them, and check out the benchmarks they have for many systems.

This is part of a series of posts on Redgate Monitor. Click to see the other posts

The CIS SQL Server Benchmark

You might get asked by an auditor how you know your SQL Server estate is secure. There are lots of things you can do, but an easy one is being CIS compliant. There are benchmarks from CIS for many SQL Server versions. You can download the benchmark from CIS as a PDF, go through it, and then start to compare that to your SQL Server instances.

2024-12_0195

That’s not complex, but it is complicated. Lots of moving parts, where do you keep the benchmark data, how do you compare it to your instances, how do you ensure it’s up to date or get notified if it’s not?

This is a simple job, but labor intensive, boring, and tedious. There’s a better way.

Redgate Monitor Compliance

We’ve added a compliance section to Redgate Monitor, which I’ve written about in terms of looking for older versions. However, we also have added to this section with a CIS Benchmark template.

At the top of Redgate Monitor, there is a Security section and Compliance is under this.

2024-12_0196

When I get to the compliance screen, on the right side, I have a drop down for the templates. We’ve pre-loaded the CIS Benchmark in here. I can select that to see how compliant I am.

2024-12_0197

In this case, I’ve filtered to the SSC servers and when I do that, I see that I’m mostly compliant, but just barely. I say me, but this is our IT group that manages the config.

2024-12_0198

There is a disclaimed at the top, which you should note. It links here, where the docs note that this is a template that cannot be deleted or changed. It can be duplicated. Note, this is only for SQL Server 2022.

If I click a server, I see the details of where and where not I am compliant. In tis case, things like database mail ought to be disabled.

2024-12_0200

I can’t change things from here, but I can export this as a report and work on remediation. If I want to set a template that is like CIS, but I have a good reason for an exception, such as the Cost threshold for parallelism set to something different, I can duplicate this template and alter it.

Summary

Auditing and compliance are becoming more important at many organizations, especially in light of the main data breaches and other issues that many organizations have experienced. This might even be required by insurance companies who want to ensure that you have not left open configurations that might become attack vectors.

If you haven’t tried the compliance templates in Redgate Monitor, give it a try, or have a play at monitor.red-gate.com..

Redgate Monitor is a world class monitoring solution for your database estate. Download a trial today and see how it can help you manage your estate more efficiently.

Posted in Blog | Tagged , , | Comments Off on Monday Monitor Tips: CIS Compliant

Signing off for 2024

Posted on December 20, 2024 by way0utwest

Today is really the last day of work for me in 2024. I’ve got some vacation saved up, so I’m heading off next week to enjoy the holidays and catch up on a few chores. Even volleyball will be somewhat suspended, so it will be a nice break.

Happy Holidays and see you in 2025.

Posted in Blog | Tagged | Comments Off on Signing off for 2024