Tag Archives: security

SQL Injection Everywhere

Posted on April 11, 2011 by way0utwest

I was doing the laundry the other day and thinking about SQL Injection. I have this fancy front load model that lets me load fabric softener and bleach into containers for release later, and it occurred to me that if … Continue reading

Posted in Editorial | Tagged , | Comments Off on SQL Injection Everywhere

Am I a sysadmin? (or other SQL Server role)

Posted on April 5, 2011 by way0utwest

How do you check if you are a sysadmin? It’s fairly easy to do in Management Studio. You can go to Security \ Server Roles \ Sysadmin, as shown here: You right click sysadmin and click properties to get a … Continue reading

Posted in Blog | Tagged , , , | Comments Off on Am I a sysadmin? (or other SQL Server role)

Brian Kelley on Security at SQL Server Connections

Posted on March 30, 2011 by way0utwest

Random notes from Brian Kelley’s security talk. Brian spent a number of years working a a security guy for a bank in the Windows and infrastructure teams. Networking, the UDP port is 1434. This is the listener and browser for … Continue reading

Posted in Blog | Tagged , , | Comments Off on Brian Kelley on Security at SQL Server Connections

Do You Need A Safe Word?

Posted on March 24, 2011 by way0utwest

I read this Forbes piece on the hacker “Kayla”, which led me to this correspondence posted when she (or he) hacked HBGary Federal. The transcript of emails is rather amazing  and a little scary. She manages to get access to … Continue reading

Posted in Editorial | Tagged | Comments Off on Do You Need A Safe Word?