Infrastructure at your Service

Security Archives - Page 3 of 4 - Blog dbi services

Stéphane Haby

SQL Server 2016 – Security: Dynamic Data masking – Numeric Data Types

By | Database Administration & Monitoring, Technology Survey | No Comments

This blog is a part of the series “SQL Server 2016 – Security: Dynamic Data masking“. I remember you my different logins used to connect to AdventureWorks: sql login u1 with the db_owner role –> No masking sql login u2 with the db_datareader role –> masking The Data Types used are: bit, tinyint, smallint, int, float & money.  

 
Read More
Stéphane Haby

Row Level Security (RLS) is also coming to MS SQL Server

By | Database Administration & Monitoring, Technology Survey | No Comments

Why “also” in my title? On 29 August, my colleague Daniel Westermann wrote an article about Row Level Security in the next version of PostgreSQL. Row Level Security called also RLS is a new feature in SQL Server 2016 and of course in SQL Azure. This new security in SQL Server returns only rows that the user has permission to access. The best way to understand is with a little sample and I use Daniel’s…

 
Read More
David Barbarin

SQL Server 2016 : availability groups and the new ssis_monitor role for SSIDBB catalog

By | Database Administration & Monitoring | No Comments

During my investigation about the new AlwaysOn features, I wrote a blog post about the new SSISDB support for AlwaysOn. You can find it here: > SQL Server 2016 : availability groups and the new SSISDB support Just as a reminder, for those who have dealt with the SSISDB catalog in the previous version, some extra works were mandatory to be “AlwaysOn” compliant. Fortunately, the new version of SSIDB catalog will make easier the DBA…

 
Read More
Daniel Westermann

Row level security is coming to PostgreSQL

By | Database Administration & Monitoring | No Comments

Before PostgreSQL 9.5 (which is in alpha2 currently) you could grant access to individual columns of a table to users or roles. A little test script to demonstrate this: (postgres@[local]:5432) [postgres] > select version(); version ————————————————————————————————————– PostgreSQL 9.4.4 on x86_64-unknown-linux-gnu, compiled by gcc (GCC) 4.8.3 20140911 (Red Hat 4.8.3-9), 64-bit (1 row) create table t ( id int primary key, name varchar(50), salary bigint ); insert into t ( id, name, salary ) values (…

 
Read More
Franck Pachot

Franck Pachot: Multithreaded 12c and ‘connect / as sysdba’

By | Database management, Oracle | 4 Comments

In Oracle 12c you can run Oracle processes as operating system threads, lowering the number of OS processes. But you can’t use OS authentification: you need to provide a password. Here is a way to set an environment so that you can still ‘connect / as sysdba’ to a multithreaded instance. Windows I start with Windows because Oracle has always been multithreaded on windows. Are you able to use operating system authentication then? You  think…

 
Read More
Microsoft Team

SharePoint Governance? Why?

By | Application integration & Middleware | No Comments

Companies are struggling with SharePoint. It’s been installed, and abandoned. Business stuff is not drove to make SharePoint succeed. From this point you need to dress up a governance for SharePoint. Governance focuses on the technology, business and human side of SharePoint. What is GOVERNANCE? Governance is the set of: policies roles responsibilities processes that help and drive Companie’s IT Team and business divisions in order to get their GOALS. Good governance is therefore establishing…

 
Read More
Stephane Biehler

D2 performance issues due to KB3038314 IE patch

By | Application integration & Middleware | No Comments

I ran into a strange issue by a customer. When trying to open a huge VD on the D2’s right panel the browser freezes. It seems to be due to an Internet Explorer security patch. It is introducing huge performance issues. So if you run into strange issues concerning your web browser check the patch version of IE. The security patch which causes issues is KB3038314.  

 
Read More
Nicolas Jardot

Use a wallet to encrypt Oracle client passwords

By | Database management | No Comments

In our more and more connected world, security is a big concern. Storing password is a very important topic because if a machine is compromised, we can assume that any password stored in clear text are also compromised. I had the question from a customer how can we encrypt the password in our application and monitoring scripts? In this blog we will discuss one solution: using the Oracle client wallet We find passwords for Oracle…

 
Read More
Stéphane Haby

Security via policies

By | Database management | No Comments

Few weeks ago, I presented the session on security via Policies for “Les journées SQL Server 2014″, organized by the French SQL Server User Group (GUSS) in Paris. I promised to post our policies script on a blog. Security Policies are split into 4 categories: Server Instance Database Data All policies follow this naming convention: dbi_”Level number”_”Level name”_”Policy name” I give you the policy name, the condition and the query or facet associated. To understand…

 
Read More