July 03, 2009
Login
|
Home
FAQs
SQL Server FAQ
SQL Injection FAQ
SQL Security Checklist
SQL Server-Related Products
SQL Server/MSDE-Based Applications
SQL Server Version Database
Tools
Lockdown Script
Free Tools
Free Analysis
Group Policy Templates
Commercial Tools
Community
Discussions
Links
About
Search
Survey
Assuming you didn't have access to SQL Server, which open source or "Express" edition commercial package would you use?
Oracle Express Edition
MySQL
PostgreSQL
DB2 Express Edition
Firebird
Sybase Developer Edition
Other
Submit Survey
View Results
Links
Network Toaster
NGSSoftware
Internet Storm Center
Special Ops Security
Featured Products
DHCP Sentry
SQLPing3 (free)
Books
Welcome To SQLSecurity.com
This site is dedicated to those who are serious about security - specifically, Microsoft SQL Server security. Whatever your feelings about Microsoft, the bottom line is that these servers are showing up everywhere and its time we learned how to properly secure them. At this site we do just that. We find problems, post solutions, and get the word out. If anyone tells you that security ends with the OS, they are dead wrong. Many times excellent network and host-based security has been bypassed exposing the very heart of the enterprise: all because of poor SQL Server configuration.
"There is no 'patch' for stupidity."
Have you blocked access to TCP 1433 and UDP 1434 from all un-trusted clients? No? Then get to it!
RSS FEED
Chip's Blog
Copyright 1999 by Chip Andrews
|
Privacy Statement
|
Terms Of Use