SQL Server Security Top 10 | Database Journal
MS SQL
SHARE
Facebook X Pinterest WhatsApp

SQL Server Security Top 10

Written By
Guy van den Berg
Guy van den Berg
May 6, 1999
1 minute read

Heres the real basics, how to stop up all the little holes, at the very least you should:

  1. NEVER leave the sa passwd blank!
  2. Using Integrated security – to enforce passwd policies such as min length and reuse.
  3. Abstract the users – a level by only allowing stored procedures to access tables.
  4. Use views – to further abstract the users if possible.
  5. Use only Integrated Security and Named Pipes where ever possible.
  6. Avoid TCP/IP – if at all possible.
  7. Disable stored procedures – such as xp_cmdshell.
  8. Learn the difference – between logins and users and remove as many rights from guest as possible.
  9. Enforce – a security policy and audit levels.
  10. Change the default database – from master to something else.

Copyright ) 1998-99 G.h.van den Berg. All rights reserved.
These pages may not be resold or redistributed without prior written permission from Guy van den Berg
Guy van den Berg
Database Journal Logo

DatabaseJournal.com publishes relevant, up-to-date and pragmatic articles on the use of database hardware and management tools and serves as a forum for professional knowledge about proprietary, open source and cloud-based databases--foundational technology for all IT systems. We publish insightful articles about new products, best practices and trends; readers help each other out on various database questions and problems. Database management systems (DBMS) and database security processes are also key areas of focus at DatabaseJournal.com.

facebook
linkedin
x
rss

Company

Contact us Advertise with us

Categories

Database News Features Scripts Mysql MS SQL Oracle MS Access DB2 PostgreSQL SAP PHP

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information