SQL Server Security
One of the most important jobs of a SQL Server Database Administrator (DBA) is to secure all databases. In this article you are going to learn what to do in order to have solid secure database. If you fail securing your database(s) most likely you will lose your job. It is the DBA’s responsibility to see the problem first and recover or fix it.
Check the list for SQL Server Security Best Practices
Install latest updates and hot fixes for your SQL Server.
You always need to update your SQL Server and install hot fixes to avoid bugs or security holes in SQL Server.
Setup complex passwords for SQL Server ‘SA’ account and other SQL Server logins.
In your password use uppercase, lowercase, numbers and symbol characters. Make them impossible to guess.
Enable password expiration and password policies in SQL Server.
By enabling password expiration policy SQL Server will as you to change your password after some time.
Avoid using Windows Authentication.
If anyone has access to your computer he can log into SQL Server without using password. So avoid using windows authentication.
Monitor and Audit your SQL Server logins.
Take control and see who is logged in and what queries ran in SQL Server by auditing your SQL Server.
Disable all features that is not been used.
Disabling the features that’s not been used will reduce the surface area for attacks.
Never share ‘SA’ account with others.
The SA password is the most powerful account in SQL Server. It’s not a good practice to share it with others.
Hide an instance of SQL Server.
Disable SQL Server browser service.
If there are any named instances of SQL Server then one must explicitly specify the port number within the connection strings to connect to the named instance. SQL Server Browser Service uses by default UDP Port 1434 for connectivity.
Encrypt connections to SQL Server.
You can use Secure Socket Layer (SSL) to encrypt data across the network.
Encrypt SQL Server database backups.
Encrypting the database backups helps secure the data. While create your database backup you have an option for encrypting. You can also integrate encryption keys with Extended Key Management (EKM) providers.
There are more security precaution(s) that you can think of. The list above can help you secure your SQL Server database. As a Database Administrator you always need to be up to date with SQL Server information.