November 2007 - Posts

Business Intelligence Architecture and Design Guide

Here is an interesting document about Business Intelligence Architecture and Design Guide. It is not so short and very useful.

http://www.gotdotnet.com/codegallery/releases/viewuploads.aspx?id=00895184-067e-4183-b186-48d9f104aaaf 

 

 

SQL 2008 - Quickly search for all SQL Server 2008 Webcasts, Virtual Labs and Podcasts

NEW SQL Server 2008 Virtual Labs include “Authoring Reports Using SQL Server 2008 Reporting Services” and “Learn How to Build Occasionally Connected Applications with SQL Server 2008” are here.
 Quickly search for all SQL Server 2008 Webcasts, Virtual Labs and Podcasts

 

So much to learn,not enough time ....

Clustered SQL Server do's, don'ts, and basic warnings

 

 This article describes some important do's and don'ts for using SQL Server clustered servers with the different versions of SQL Server.

Premier customers, ask your TAM about the 3 days SQL Server Clustering training.

 

http://support.microsoft.com/kb/254321

 

Itay Braun                Premier Field Engineer - SQL Server                    Microsoft Services - UK

E-Mail: itayb@microsoft.com          Mobile: +44-796-928-9996       Blog: http://sqlblogcasts.com/blogs/thepremiers/

Veni              Vidi              Fixit

 

database exposure survey

Executive Summary

In his most recent publication The Database Exposure Survey 2007 (not yet published), David Litchfield conducted a survey on how many database servers exist on the internet, are listening on their default TCP ports and are not protected by a firewall. According to the survey, 157 SQL Servers and 53 Oracle Servers were found.  Key findings as reported in his survey include:

 

·         Database customers are vulnerable to security risks via default TCP ports and are not protected by a firewall

o   With no firewall, databases are exposed to hackers, putting corporate data at risk

·         A large percentage of legacy SQL Server installations are running on unsupported versions and have not installed the latest Service Pack updates

·         4% of legacy SQL Server systems were found to be completely un-patched and therefore still vulnerable to the Slammer virus

·         66% Oracle Server systems were running versions known to be vulnerable to critical vulnerabilities

 

Call to Action

     Ensure our customers are deploying and maintaining Microsoft SQL Servers using our published best practice security

     guidance.

·         All customers should follow the SQL Server security best practices (See below for the best practices links).

·         Database and system administrators should ensure that the host firewall is configured properly, in accordance with local security policies.  

·         Network administrators should ensure that perimeter access is configured properly, and that interior hosts are not exposed to unwanted traffic. In most cases, that means blocking access to port 1433/TCP from outside the network perimeter.

·         Customers running SQL Server 2000 versions must upgrade to the supported service pack which is SQL Server 2000 SP4 (8.0.2039).

§  How to obtain latest service pack for SQL Server 2000?

-          [Note: Older SQL Server 2000 versions include SQL Server 2000 RTM (8.0.194), RTMa (8.0.194), SP1 (8.0.384), SP2 (8.0.534), SP3 (8.0.760) or SP3a (8.0.760)]

·         Customers running SQL Server 2005 RTM version must upgrade to the supported service packs which are SQL Server 2005 SP1 (9.0.2047) and SQL Server 2005 SP2 (9.0.3042).

§  How to obtain latest service pack for SQL Server 2005?

·         How can customers identify their SQL Server version and edition?

·         How can customers detect if they are impacted?

                                 i.            Tool to scan SQL Server instance on the network/home – run nmap from an external host

 

     Best practices to secure our SQL Servers

·         SQL Server 2005 Security Best Practices - Operational and Administrative Tasks (refer to Network Connectivity section)

·         SQL Server 2005 Deployment Guidance for Web Hosting Environments (SQLCAT Recommended)

·         SQL Server 2000 – Security Best Practices Checklist (refer to Firewalls and Strong passwords section). 

-          [Note: The SQL Server 2000 SP3 best practices are valid for SQL Server 2000 SP4]

·         CIS security lockdown guide for SQL Server 2005

 

     Always Promote Upgrading

    By default, SQL Server 2005 delivers enhanced security features for enterprise data management through multiple 

     levels.  This is especially true if customers require significant configuration changes.  In our direct conversations with

     customers we must promote the value SQL Server 2005 provides to developers and database administrators to create

     and maintain secure line-of-business applications.  Please review the Why Upgrade? Whitepaper for more details on the

     value upgrading customers to the most current version of SQL Server.

 

Thanks,

Itay Braun                Premier Field Engineer - SQL Server                    Microsoft Services - UK

E-Mail: itayb@microsoft.com          Mobile: +44-796-928-9996       Blog: http://sqlblogcasts.com/blogs/thepremiers/

Veni              Vidi              Fixit

 

SQL Server 2008 - Recently Published Articles

Recently Published Articles

·          SQL Server 2008 Overview Articles

o    Business Intelligence in SQL Server 2008

o    Reporting Services in SQL Server 2008

o    SQL Server 2008 High Availability -- Always On Technologies

o    SQL Server 2008 and Data Platform Development

o    Managing Unstructured Data in SQL Server 2008

o    Delivering Location Intelligence with Spatial Data

o    SQL Server 2008 Security Overview for Database Administrators

o    Online Transaction Processing in SQL Server 2008

o    SQL Server 2008 Manageability

o    SQL Server 2008 Performance and Scalability

o    Server Consolidation with SQL Server 2008

·          Guide to Migrating from Oracle to SQL Server 2005

·          Guide to Migrating from Sybase to SQL Server 2005

Upcoming Articles

·          An Introduction to Data Warehousing Features in SQL Server 2008

·          Microsoft SQL Server 2005 Integration with Microsoft SharePoint Technologies

·          Administering and Troubleshooting Integration with Microsoft SQL Server 2005 and Microsoft SharePoint Technologies

·          BDM - Comparing Mirosoft BI and Business Objects XI

·          TDM - Comparing Mirosoft BI and Business Objects XI

·          The Impacts of Changing Collations and Changing Datatypes from Non-Unicode to Unicode

·          Guide to Migrating from Microsoft Access to SQL Server 2005

·          Microsoft BI vs. Cognos BI

·          Microsoft BI vs. Oracle BI

·          SQL Server 2008 SSIS vs. Informatica, DataStage, and Oracle ETL

·          SQL Server 2008 for Oracle Professional

·          SQL Server 2008 vs Oracle 11g

I attached a word doc with some useful links

Itay Braun                Premier Field Engineer - SQL Server                    Microsoft Services - UK

E-Mail: itayb@microsoft.com          Mobile: +44-796-928-9996       Blog: http://sqlblogcasts.com/blogs/thepremiers/

Veni              Vidi              Fixit

 

Precision Considerations for Analysis Services Users

I noticed few discussions recently regarding Float data type and Accuracy.

(http://sqlblogcasts.com/blogs/alex_kuznetsov/archive/2007/10/26/when-sum-of-six-floats-depends-on-order-of-adding.aspx ,

http://sqlblogcasts.com/blogs/simons/archive/2007/10/30/Are-floats-inaccurate-.aspx )

 

In this context, I’m happy to tell you about a new SSAS White Paper - Precision Considerations for Analysis Services Users.

This white paper covers accuracy and precision considerations in SQL Server 2005 Analysis Services. For example, it is possible to query Analysis Services with similar queries and obtain two different answers. While this appears to be a bug, it actually is due to the fact that Analysis Services caches query results and the imprecision that is associated with approximate data types. This white paper discusses how these issues manifest themselves, why they occur, and best practices to minimize their effect.

 

http://www.microsoft.com/downloads/details.aspx?familyid=bae8beec-9892-4ecd-a9db-292254895f9c&displaylang=en

 

 

Itay Braun                Premier Field Engineer - SQL Server                    Microsoft Services - UK

E-Mail: itayb@microsoft.com          Mobile: +44-796-928-9996       Blog: http://sqlblogcasts.com/blogs/thepremiers/

Veni              Vidi              Fixit

 

Search

Go

This Blog

Tags

Syndication