Best Books of the Month Shop Costumes Learn more nav_sap_SWP_6M_fly_beacon Janet Jackson All-New Fire TV Stick with Voice Remote Subscribe & Save Introducing Handmade New Kitchen Scale from AmazonBasics Amazon Gift Card Offer redoaks redoaks redoaks  Amazon Echo Starting at $49.99 Kindle Voyage UnchartedBundle Shop Now Learn more
SQL Server Security (Osborne Networking) and over one million other books are available for Amazon Kindle. Learn more

Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.

  • Apple
  • Android
  • Windows Phone
  • Android

To get the free app, enter your email address or mobile phone number.

SQL Server Security 1st Edition

4 customer reviews
ISBN-13: 978-0072225150
ISBN-10: 0072225157
Why is ISBN important?
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Have one to sell? Sell on Amazon
Buy used
Buy new
More Buying Choices
13 New from $0.59 24 Used from $0.36
Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student

Save up to 80% on Textbook Rentals Rent Textbooks
$46.75 FREE Shipping. Only 2 left in stock (more on the way). Ships from and sold by Gift-wrap available.

Frequently Bought Together

  • SQL Server Security
  • +
  • Implementing Database Security and Auditing
  • +
  • The Database Hacker's Handbook: Defending Database Servers
Total price: $131.21
Buy the selected items together

Editorial Reviews

From the Back Cover

Protect your data from the most sophisticated hackers with hands-on examples and sure-fire measures in SQL Server Security. Understand the ways in which SQL Server can be hacked, and what you can do to prevent exploitation of your data. Install, administer, and program secure Microsoft SQL Server environments and applications. Assess your risk and threat levels when designing a secure system. Make sure your defensive strategies match the threat when considering encryption options. Extend your defenses to include security auditing and intrusion detection. Implementing the techniques in this indispensable security resource is as close as you can get to guaranteed prevention against hackers without turning off the power switch.

Covers the latest techniques:

  • Install and configure your SQL Server environment for maximum security
  • Build and maintain a robust and protected database server
  • Protect valuable customer information, human resources data, and more
  • Defend against application software vulnerabilities and configuration issues
  • Ensure that access to data is only granted when appropriate
  • Encrypt data into an unreadable form to preserve confidentiality
  • Understand the mistakes that contributed to the spread of the SQL Slammer worm
  • Rid your applications of SQL injection bugs
  • Permit client applications to access the server securely
  • Build and utilize an effective auditing and intrusion detection plan

About the Author

Chip Andrews, MCDBA, MCSE+I, is a Software Security Architect for Claris Corporation as well as an independent security consultant. Chip has more than 16 years of software development experience in the C++, Visual Basic, Java, C#, and T-SQL languages. He is a contributing author to several periodicals including Microsoft Certified Professional Magazine, SQL Server Magazine, and Dr. Dobbs Journal. Chip also has contributed a chapter on SQL Server Security to the book Hacking Exposed Windows 2000 by Osborne. He has given presentations at Black Hat computer security conferences concerning SQL Server security and its role in the secure enterprise.


Best Books of the Month
Best Books of the Month
Want to know our Editors' picks for the best books of the month? Browse Best Books of the Month, featuring our favorite new books in more than a dozen categories.

Product Details

  • Series: Osborne Networking
  • Paperback: 352 pages
  • Publisher: McGraw-Hill Education; 1 edition (September 12, 2003)
  • Language: English
  • ISBN-10: 0072225157
  • ISBN-13: 978-0072225150
  • Product Dimensions: 7.3 x 0.9 x 9.1 inches
  • Shipping Weight: 1.6 pounds (View shipping rates and policies)
  • Average Customer Review: 4.8 out of 5 stars  See all reviews (4 customer reviews)
  • Amazon Best Sellers Rank: #1,905,647 in Books (See Top 100 in Books)

More About the Authors

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

5 star
4 star
3 star
2 star
1 star
See all 4 customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

8 of 8 people found the following review helpful By Richard Bejtlich on October 11, 2003
Format: Paperback
"SQL Server Security" (SSS) is a great security book, free of the bloat the affects both operating systems and many technical volumes. Weighing in at 322 pages, it's packed with the detail needed to securely deploy Microsoft SQL servers. Although many people contributed to the text, it doesn't suffer from internal redundancy. I highly recommend anyone operating SQL servers devour this book.
In the "Acknowledgements," lead author Chip Andrews writes "I wanted this book to give security and database professionals the same readability, reference ability, and red-eyed wonder that 'Hacking Exposed' gave me a few years back." My favorite aspect of the HE line was the material's ability to explain attack and defense concepts while illuminating the internal operation of victimized systems. SSS follows this lead by devoting entire chapters to SQL Server components, like Network-Libraries (ch. 4) and Authentication and Authorization (ch. 5). My favorite sections appear in chapter 7, where the authors describe novel ways to leverage SQL Server's "C-2 auditing" features for purposes of intrusion detection.

SSS dispenses an immense amount of useful advice, whether it's a whole chapter on secure installation (ch. 3), best practices found in most chapters, or the appendices on stored procedures and integration with other Microsoft technologies. The only downside I found appears in chapter 2, where SQL samurai David Litchfield uses language outside the realm of most readers' understanding. For example, "the import address entry for GetProcAddress() in sqlsort.dll shifts by 12. With no SQL Server service pack, the address of the entry is at 0x42AE1010, and on SP1 and SP2, it is at 0x42AE101C" (p. 29). The uninitiated should skim this chapter and trust the authors when they claim SQL Server can be attacked by multiple means.

SSS is a must-buy if you operate SQL Server. It's the manual Microsoft forgot to ship.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
3 of 3 people found the following review helpful By A Customer on December 28, 2003
Format: Paperback Verified Purchase
Having read about half of this book, I can say that each chapter has not disappointed me. As a mid-level DBA, this book has helped bring things together in my mind that seemed like a loose collection before. I would highly recommend this book to anyone wanting to beef up their knowledge of security with SQL Server. The authors have done an excellent job. It's easy to read and chapters are reasonably short and concise with just the right amount of illustrations.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
2 of 3 people found the following review helpful By Midwest Book Review on January 12, 2004
Format: Paperback
SQL Server Security by David Lichtfield clearly addresses SQL Server vulnerabilities and provides security solutions, as well as covering installation, administration, and programming, plus security issues such as authentication, encryption, intrusion detection, and more. Written for IT professionals administering or programming any SQL Server-based application, SQL Server Security includes coverage of SQL Server 7, SQL Server 2000, and SQL Server (Yukon).
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
4 of 8 people found the following review helpful By Eric Kent on October 30, 2003
Format: Paperback
If you do anything with SQL and need top secure it, please read this book.
Securing SQL is not rocket science, but it is easy to do wrong.
This book shows how to do it right.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

Set up an Amazon Giveaway

Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
SQL Server Security
This item: SQL Server Security
Price: $46.75
Ships from and sold by

Want to discover more products? Check out these pages to see more: hash pipes, networking & servers