| A community of more than 1,600,000 database professionals and growing |
| | | Who Are Your Authenticated Users? I ran across a data breach at Dow Jones, the parent company of the Wall Street Journal newspaper. Apparently there was a database export that was stored on an Amazon S3 bucket. A security researcher discovered this and notified the company. Once the issue was corrected, the article linked above was published. The details note that the security on the bucket was set to authenticated users, which is good. So, some security was set up. To me, if I were operating in an Azure or AWS environment, I would assume this meant authenticated users in my subscription/account/etc. In other words, my business partners and employees. That's not the case. This means anyone with an AWS account, which means anyone bothering to register for an account because they're free. This meant that anyone, from security researchers to criminals to any of you that do work in AWS, could have downloaded the data. The report was released after security was changed, which is a responsible approach. We, as an industry, need to know about these things, but we also don't want to unnecessarily expand a data breach. Since this has been published, however, it's likely that plenty of people are scanning S3 buckets, looking for data that has "Authenticated Users" as a security setting. If you have any doubts, check and change your security now. This setting amounts to "public" since anyone can get an AWS account in a couple minutes. Double check your account and ensure security is set to meet the requirements of your organization. Steve Jones from SQLServerCentral.comJoin the debate, and respond to today's editorial on the forums |
| | The Voice of the DBA Podcast Listen to the MP3 Audio ( 2.5MB) podcast or subscribe to the feed at iTunes and Libsyn. The Voice of the DBA podcast features music by Everyday Jones. No relation, but I stumbled on to them and really like the music. |
|
|
|
| | ADVERTISEMENT | | | | CI/CD for your SQL Server database Feeling the pain of managing and deploying database changes manually? Redgate SQL Change Automation completes your database delivery process by building, testing, and deploying the database changes you and your team check into version control.
Try it free |
| | | | SQL Provision: Create, protect, & manage SQL Server database copies for compliant DevOps With SQL Provisions virtual cloning technology, databases can be created in seconds using just 1MB of storage, and sensitive data can be anonymized or replaced with realistic data to ensure it is protected as it moves between environments. Download your free trial |
|
|
|
| | | | | Additional Articles from Brent Ozar Unlimited Blog Michael J. Swart posted an interesting question: he had a large table with 7.5 billion rows and 5 indexes. When he deleted 10 million rows, he noticed that the indexes were getting larger, not smaller. More » |
| | Additional Articles from MSSQLTips.com I noticed the Lookup function in SQL Server Reporting Services. In this tip we look at all three SSRS lookup functions: Lookup, LookupSet and MultiLookup. More » |
| | Grant Fritchey from SQLServerCentral Blogs I’ve shown before how to use the DMVs that read the plan cache as a way to connect the missing... More » |
|
|
| | | Today's Question (by Steve Jones): I am trying to remove some of the extra tempdb files that I have on an instance. I tried ALTER DATABASE tempdb REMOVE FILE tempdb32, but I got this message. Msg 5042, Level 16, State 1, Line 33
The file 'temp3' cannot be removed because it is not empty. What can I do? |
Think you know the answer? Click here, and find out if you are right. We keep track of your score to give you bragging rights against your peers.
This question is worth 1 point in this category: Administration. We'd love to give you credit for your own question and answer.
To submit a QOTD, simply log in to the Contribution Center. |
|
|
| Yesterday's Question of the Day |
| Yesterday's Question (by Junior Galvão - MVP): You start executing the code block declared below: BEGIN TRANSACTION TTBL; DECLARE @Counter TINYINT = 1; SELECT 'BEGIN...'; WHILE @COUNTER < 255 BEGIN UPDATE TabLockTable WITH (TABLOCK) SET Valores = @Contador WHERE Codigo = 10; SELECT Valores FROM TabLockTable WHERE Codigo = 10; SET @COUNTER += 1; END; SELECT 'END...'; GO You then decide to open a new query and execute the following statement: Insert Into TabLockTable Values ('Test TabLock') Go What happens in the new query window?
Answer: Nothing. The Insert command is being processed because a table lock has occurred. Explanation: The correct answer is: Nothing. The Insert command is being processed because a table lock has occurred. During processing of the TTBL Transaction, the Update command is used in conjunction with the TabLock table hint. When this hint is used, the database engine applies a table-level lock, which prevents any other modifications while the transaction is uncommitted. By specifying TABLOCK, the shared lock is applied to the entire table instead of at the row or page level. Ref: Hints - click here » Discuss this question and answer on the forums |
|
|
| Database Pros Who Need Your Help |
| | Here's a few of the new posts today on the forums. To see more, visit the forums. SQL server logs - I have a question about SQL server logs and SQL server error logs. What usually are logged, I can see... Allocate daily meetings to employees but set a max of 5 hours per day + SSRS v3.0 - Hi all, I am currently working on a project where I need to allocate meetings to employees (randomly generated, E0,E1,E2,E3,E4,E5, F0,... get the data from last modified - Hi, I am trying to get the output as shown. I am looking for latest modified date rows for each "Type"... Security Question: CREATE USER ABCDE FOR LOGIN ABCDE when login doesn't exist - So let's say I have a database, ABC, where there is a user ABCDE, and I script out the user... SQL Account - Once the SQL Server gets built by someone, later i would like to get notified about new database creations(this would... sql job taking more time - Hi All, Need some advice on troubleshooting sql jobs. We have a ongoing performance issue on one of our Production server. ... Retrieve rows where specific columns are different between columns - I have the following SQL (that I got assistance on her with) to obtain both highest (max) and 2nd highest... Loading Data from Staging Table to Parent and child tables - Hi, I am trying to load data fro mSTaging table (No Primary Key as it's from the csv file) but in... Help with the T-Sql to alter column size and before that the PK. - Folks I tried this ALTER TABLE .. ALTER COLUMN varchar(40); Then I get this error message Msg 5074, Level... t-sql 2012 sum of several fields - In the t-sql 2012 orig sql listed below, I am trying to determine how to tell if at least 2... get percentage of sale quantity based on items from same group verses the Part-12 item - So in the example I divide the quantity of each item by the quantity of 230-12. I would like to... Alternative to sp_OACreate, sp_OAMethod, and sp_OADestroy call a url for returning XML - I have created the following sproc for calling a URL to return XML. However, we dont have access to run... How to return a value if an INNER JOIN isn't satisfied? - Hi, I have Historical T-SQL query as below: SELECT Server to Server data transfer for single column in a table - I need to copy data from a particular column in a table and transfer to another table however, this involves... Font Awesome in Reports - Hello friends! We have a web application that uses font awesome for icons and in an attempt to keep things uniform,... Allocate Meetings to Employees (randomly generated) with daily maximum hours set at 5 - Hi all, I am currently working on a project where I need to allocate meetings to employees (randomly generated, E0,E1,E2,E3,E4,E5, F0,... How to configure SSRS 2016 so that it uses HTTPS - How does one configure SSRS to use the HTTPS protocol instead of just HTTP ? Does one need to have a... Performance improvement query sql server - Hello then the insert and update queries below must insert the items not present in the **Articolo** table by importing... Netezza Query takes forever and eventually times out, can this be re-written to run quicker? - SELECT SS.ITEM,SS.SHIPMENT, MAX(SS.PROCESS_DATE) PROCESS_DATE FROM SHIPMINTS SS where SS.shipment > 14959039 and SS.QTY_RECEIVED is not null &nbs Evolution of career from perm/consulting to freelancing? - Hi, I am working as DBA for 17+years. permanent -> consultant-> permanent -> consultant ... at some point I start thinking about... |
|
| This email has been sent to [email protected]. To be removed from this list, please click here.
If you have any problems leaving the list, please contact the [email protected]. | This newsletter was sent to you because you signed up at SQLServerCentral.com.
Feel free to forward this to any colleagues that you think might be interested.
If you have received this email from a colleague, you can register to receive it here. | This transmission is ©2018 Redgate Software Ltd, Newnham House, Cambridge Business Park, Cambridge, CB4 0WZ, United Kingdom. All rights reserved.
Contact: [email protected] |
|
|
