Audit Schema Change Report

In a recent article on SSG, I discussed how to use Extended Events to function in a Profiler like fashion.  You can read about that here.  I recommend reading that article first because it helps […]

Auditing and Event SubClasses

A recent discussion got me to thinking about Auditing.  To be honest, it got started with a complaint about some documentation that seemed overly light about the various fields related to auditing as it stands […]

Audit Configuration Changes

Do you know the last time a Server Property was changed on your instances of SQL Server? Are you wondering when the setting for max degree of parallelism was changed? Do you know who changed […]

Public Role and Security

A good rule of thumb with the public role is to leave it be.  Do not add permissions to this role.  Add permissions on a per database  and per group of users basis.  Create roles within the database and grant permissions to that role – in each database.  And remember the rule of least privilege – don’t grant more permissions to a user/role than necessary to perform the job function.  Just the same as in an airport – everybody has their role and it is strictly defined.  If the user need not have access – then don’t grant the permissions.

Stored Procedures – Common Security Practice

In SQL Server a good practice is to access the data via calls through stored procedure.  Have a look at the document available in that link. To further this practice, one may create a database […]

Column Level Permissions

Did you know that you can grant permissions down to the column level in SQL Server?   Well, if you didn’t know that – you do now. It is actually rather simple to grant permissions […]