Академический Документы
Профессиональный Документы
Культура Документы
Agenda
Top Database Server Threats Secure the Server Deprive your Development Account Prevent SQL Injection Encrypt Sensitive Information Protect the Connection Strings
Use a firewall
Default port 1433
SQL Injection
An attack in which malicious code is passed into strings for SQL Server to execute Most common form of injection are from web forms Affects almost all web and database applications, not just SQL Server
Use parameters with dynamic SQL Avoid disclosing error information Use a scanning tool