Highest Voted 'vulnerability-assessment' Questions - Database Administrators Stack Exchange

14

votes

2 answers

Should I drop dbo from the database role db_owner?

I did a Vulnerability Assessment for my database today. I found VA2108 and it suggests me to ALTER ROLE [db_owner] DROP MEMBER [dbo] But it's the default setting of any SQL instance. Should I go for it? And is there any risk? Thanks

asked Feb 03 '21 at 00:57

DBALUKE HUANG

439
6
21

4

votes

1 answer

Is SQL Server affected by OpenSSL 3.0 Vulnerabilities: CVE 2022-3786 and CVE 2022-3602

I am trying to establish whether SQL Server is affected by the recently discovered OpenSSL vulnerabilities. For example, are SQL Servers that are using TLS/Certificates to encrypt connections between client and server affected to? I believe SQL…

sql-server ssl vulnerability-assessment

asked Nov 08 '22 at 03:30

steve

47
6

4

votes

2 answers

How can I run SQL Server Vulnerability Assessment from a SQL Job?

I want to run SQL Server Vulnerability Assessment from a SQL Server Agent Job. Currently, I am attempting a job with a PowerShell script and am running a command like the one below. Invoke-SqlVulnerabilityAssessmentScan -ServerInstance…

sql-server sql-server-agent vulnerability-assessment

asked Aug 20 '19 at 13:48

Scott

193
7

2

votes

2 answers

Trying to disable xp_Cmdshell and rpc_out and and receiving mixed results

I'm trying to disable xp_Cmdshell and rpc_out and when I run the commands on query analyzer it shows it's disabled. But after this I need to run a security scan report which provides me the following report that it's has not been disabled. Can…

sql-server vulnerability-assessment

asked Apr 18 '13 at 19:31

arif

21
1
2

1

vote

0 answers

Permissions for setting a baseline for SQL vulnerability assessment rule

I'm getting a SQL vulnerability error discovered by Microsoft Defender for Cloud. The error points to the following Vulnerability Assessment rule. But when I try to set a baseline (recommended by this rule), I get the following error: The client…

azure-sql-database azure-sql-managed-instance vulnerability-assessment

asked Jan 31 '24 at 04:07

nam

515
5
15

1

vote

1 answer

How to perform SQL vulnerability assessment in SSMS 19.1 onwards?

I'm using on-prem SQL 2022 enterprise edition. SQL vulnerability assessment option is taken out from SSMS 19.1 onwards. I'm reading that this feature is now part of defender for cloud. If anyone has tried this then is this free? And do I need to ask…

sql-server sql-server-2022 vulnerability-assessment

asked Oct 13 '23 at 10:29

variable

3,590
4
37
100

1

vote

3 answers

What are some sensible approaches for dealing with 4,000 vulnerabilities across 700 databases in 70 servers

I'm looking for ideas here. I've inherited a large SQL estate with multiple servers in multiple configs that has grown over 10-15 years with no specific DBA-skilled individual in charge. I'm the first DBA to join the organisation (and the only one,…

sql-server security vulnerability-assessment

asked Oct 09 '23 at 13:31

Potatan

11
2

1

vote

2 answers

Incorrect "Sensitive data columns should be classified" report

Every week I'm getting a failed "Vulnerability Assessment" email report from my Microsoft Azure SQL Database that is incorrect. It complains about columns that have is_computed column in sys.columns set to 1. It is not possible to add a…

azure-sql-database vulnerability-assessment

asked Aug 12 '19 at 06:17

Henrik Staun Poulsen

2,249
2
23
41

1

vote

0 answers

SQL Vulnerability Assessment Error in PowerShell

I am running Vulnerability Assessments against my SQL Servers and databases using the PowerShell cmdlets Invoke-SqlVulnerabilityAssessmentScan and Export-SqlVulnerabilityAssessmentScan, however, I am hitting an error on one database. I receive the…

sql-server sql-server-2012 ssms powershell vulnerability-assessment

asked Jul 02 '19 at 04:35

HandyD

10,432
1
13
27

0

votes

0 answers

Security Updates for Microsoft SQL Server OLE DB Driver

Actually I have silly question. If I install below update during working hours then is it occurring any interrupt ? Also I have checked release notes. But I couldn't find anything. Security Updates for Microsoft SQL Server OLE DB Driver (June 2023)

sql-server oledb vulnerability-assessment

asked Sep 25 '23 at 16:11

Cell-o

1,106
8
21
40

0

votes

1 answer

How to setup Mysql master-slave replication with the slave meant for testing where divergence is OK

Problem: I have a staging DB server on which functionality is tested before pushing it to the production environment. Now, we want to start doing VA/PT (Vulnerability Analysis and Penetration Testing) on our application, but since that can be…

mysql security master-slave-replication testing vulnerability-assessment

asked Apr 30 '21 at 15:13

site80443

119
6

0

votes

1 answer

Should I provide db_owner principal role to the user of the Azure SQL of my Azure Web App?

I have an Azure Web App connected to an Azure SQL database. Let's call the app ACME. The application has it's own Role and User called ACME, and I gave that User db_owner principal roles. The authentication of the Web App is not Active Directory…

security azure-sql-database vulnerability-assessment

asked Feb 10 '21 at 18:27

Csaba Toth

239
3
9

0

votes

1 answer

On what basis DMA identifies columns for Dynamic Data Masking?

Can anyone help me explain on what basis 'Data Migration Assessment' features recommendation suggests for Dynamic Data Masking and displays certain objects/tables columns for masking. On what basis DMA identifies those columns for…

sql-server sql-server-2016 data-masking dynamic-data-masking vulnerability-assessment

asked Jul 26 '19 at 05:17

SSS

397
1
9
16

Questions tagged [vulnerability-assessment]