Tag Archives: security

Do We Care?

Posted on August 11, 2014 by way0utwest

Today’s editorial at SQLServerCental is entitled: We Don’t Care about Data and IT Security. It’s by Brian Kelley (author, blog, twitter), and I think it’s worth a few minutes of your time to read. It’s aimed more at executives, and … Continue reading

Posted in Blog | Tagged , | Comments Off on Do We Care?

Elevation of Privileges

Posted on July 30, 2014 by way0utwest

At SQL Bits this year I attended a security presentation from Andreas Wolter. The session examined some attack methodologies, showing the flow that an attacker might go through to gain information about your database instance with SQL Injection. It’s a scary and eye-opening talk, … Continue reading

Posted in Editorial | Tagged , | Comments Off on Elevation of Privileges

Frustration with Bad Design

Posted on July 28, 2014 by way0utwest

This is not how you handle things. When you find security issues, and they don’t get fixed, it’s one thing to attempt to prove a point with a PEN test. It’s quite another to publicly expose information. You might find yourself in … Continue reading

Posted in Editorial | Tagged , , , , | Comments Off on Frustration with Bad Design

Administering Securely

Posted on July 11, 2014 by way0utwest

This piece was originally published on Jul 8, 2009. It is being re-run as Steve is away on sabbatical. The other day I noticed a post where someone was asking a question that I’ve seen asked often. I still haven’t … Continue reading

Posted in Editorial | Tagged , | Comments Off on Administering Securely