Some Notes, Some Scripts

These are the noted taken for searching solutions and some scripts to identify the problem

Categories:

Sysadmin can run any scripts on SQL Server. What if S/he runs scripts with bad results. Can you detect it? Yes, Just Alter your Audit specification: ALTER SERVER AUDIT [Audit-xxxxxx] WHERE ([object_name]=’sysadmin’)

Categories:

In theory, DATABASE_OBJECT_CHANGE_GROUP would be enough to capture “Alter Table” and “Alter Procedures”. But in practice you’ll see that sql cannot capture these actions. So you must add SCHEMA_OBJECT_CHANGE_GROUP, too. Actually, the DATABASE_OBJECT_CHANGE_GROUP is auditing the ALTER permission […]

Categories:

SELECT NAME,NAME ‘password’FROM sys.sql_loginsWHERE Pwdcompare(NAME, password_hash) = 1UNIONSELECT NAME,‘Blank’ AS ‘password’FROM sys.sql_loginsWHERE Pwdcompare(‘ ‘, password_hash) = 1UNIONSELECT NAME,‘password123’ AS ‘password’FROM sys.sql_loginsWHERE Pwdcompare(‘password123’, password_hash) = 1