Share:

SQL security, where next-next finish just isn’t enough

Speaker: Thomas Vandezande

Duration: 1 hour

LINK TO FEEDBACK

 

SQL comes with a lot of security settings out of the box. Very few of them are enabled by default. We will learn how to set up and configure SQL in a secure way.
Some of the topics that will be covered:
• gMSA accounts
• Kerberos vs NTLM (Windows vs SQL auth)
• SSL
• Granular rights (not everybody is a sysadmin)
• Firewall
• Hidden instance

More important, which configuration options provide you with a false idea of security:
• Putting SQL on a non-standard port
• Database encryption (in some cases)

If timing permits a live-demo or screen recording based on my following blogpost:
https://hybridcloudexperts.be/index.php/2018/02/13/how-to-prevent-man-in-the-middle-sql-injection-attacks/

Thomas Vandezande  200