Securing SQL Server: Protecting Your Database from Attackers and over 2 million other books are available for Amazon Kindle . Learn more

Sign in to turn on 1-Click ordering.
More Buying Choices
Have one to sell? Sell yours here
Sorry, this item is not available in
Image not available for
Image not available

Start reading Securing SQL Server: Protecting Your Database from Attackers on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

Securing SQL Server: Protecting Your Database from Attackers [Paperback]

Denny Cherry
5.0 out of 5 stars  See all reviews (1 customer review)
RRP: 30.99
Price: 27.89 & FREE Delivery in the UK. Details
You Save: 3.10 (10%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
Only 2 left in stock (more on the way).
Dispatched from and sold by Amazon. Gift-wrap available.
Want it tomorrow, 11 July? Choose Express delivery at checkout. Details


Amazon Price New from Used from
Kindle Edition 26.50  
Paperback 27.89  

Book Description

13 Sep 2012 1597499471 978-1597499477 2

SQL server is the most widely used database platform in the world, and a large percentage of these databases are not properly secured, exposing sensitive customer and business data to attack.

In Securing SQL Server, 2e, readers learn about the potential attack vectors that can be used to break into SQL server databases as well as how to protect databases from these attacks. In this book written by Denny Cherry, a Microsoft SQL MVP and one of the biggest names in SQL server today, readers learn how to properly secure a SQL server database from internal and external threats using best practices as well as specific tricks the authors employ in their roles as database administrators for some of the largest SQL server deployments in the world.

"Denny Cherry is what would happen if Bill Gates and AC/DC got together to create a sibling. He's a bare-knuckles, no holds-barred technologist, and you can bet that if he tells you that something does or doesn't work, he's speaking from experience. Active in the community, his passion is sharing. You'll enjoy this book."--Buck Woody, Senior Technology Specialist, Microsoft

    • Presents hands-on techniques for protecting your SQL Server database from intrusion and attack.
    • Provides the most in-depth coverage of all aspects of SQL Server database security, including a wealth of new material on Microsoft SQL Server 2012 (Denali).
    • Explains how to set up your database securely, how to determine when someone tries to break in, what the intruder has accessed or damaged, and how to respond and mitigate damage if an intrusion occurs.

    Special Offers and Product Promotions

    • Spend 30 and get Norton 360 21.0 - 3 Computers, 1 Year 2014 for 24.99. Here's how (terms and conditions apply)

    Product details

    • Paperback: 408 pages
    • Publisher: Syngress; 2 edition (13 Sep 2012)
    • Language: English
    • ISBN-10: 1597499471
    • ISBN-13: 978-1597499477
    • Product Dimensions: 2.3 x 19.1 x 22.9 cm
    • Average Customer Review: 5.0 out of 5 stars  See all reviews (1 customer review)
    • Amazon Bestsellers Rank: 276,940 in Books (See Top 100 in Books)
    • See Complete Table of Contents

    More About the Author

    Discover books, learn about writers, and more.

    Product Description


    "Denny Cherry is what would happen if Bill Gates and AC/DC got together to create a sibling. He's a bare-knuckles, no holds-barred technologist, and you can bet that if he tells you that something does or doesn't work, he's speaking from experience. Active in the community, his passion is sharing. You'll enjoy this book."--Buck Woody, Senior Technology Specialist, Microsoft "Securing SQL Server - Protecting Your Database from Attackers and SQL Injection Attacks and Defense are two new books out on SQL security. The first, Securing SQL Server - Protecting Your Database from Attackers, author Denny Cherry takes a high-level approach to the topic. The book explains how to secure and protect a SQL database from attack. The book details how to configure SQL against both internal and external-based attacks. This updated edition includes new chapters on analysis services, reporting services, and storage area network security. For anyone new to SQL security, Cherry does a great job of explaining what needs to be done in this valuable guide. In and SQL Injection Attacks and Defense, editor Justin Clarke enlists the help of a set of experts on how to deal with SQL injection attacks. Since SQL is so ubiquitous on corporate networks, with sites often running hundreds of SQL servers; SQL is prone to attacks. SQL injection is a technique often used to attack databases through a website and is often done by including portions of SQL statements in a web form entry field in an attempt to get the website to pass a newly formed rogue SQL command to the database. SQL injection is a code injection technique that exploits security vulnerability in a website's software. The vulnerability happens when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and unexpectedly executed. With that, the need to defend servers against such attacks is an imperative and SQL Injection Attacks and Defense should be required reading for anyone tasks with securing SQL servers."--RSA Conference

    About the Author

    Denny Cherry (MCSA, MCDBA, MCTS, MCITP, MCM) has been working with Microsoft technology for over 15 years starting with Windows 3.51 and SQL Server 6.5. In 2009, Denny was named as a Microsoft MVP for the Microsoft SQL Server product, and in 2011 Denny earned the Microsoft Certified Master certification for SQL Server 2008. Denny has written dozens of articles for a variety of websites as well as print magazines on a variety of subjects including SQL Server, Clustering, Storage Configuration, and SharePoint.

    Inside This Book (Learn More)
    Browse Sample Pages
    Front Cover | Copyright | Table of Contents | Excerpt | Index
    Search inside this book:

    Customer Reviews

    4 star
    3 star
    2 star
    1 star
    5.0 out of 5 stars
    5.0 out of 5 stars
    Most Helpful Customer Reviews
    5.0 out of 5 stars Required Reading for MCSM 2012 27 May 2013
    Format:Paperback|Verified Purchase
    This book covers most areas of SQL Server Security.
    The areas covered are explained clearly and concisely.
    I would like to have see a bit more debugging of broken situations.
    For example debugging SPN issue's, Security often overlap's multiple disciplines and responsibilities so a clear understanding of debugging steps would be great. Maybe next version.
    Despite this I highly recommend this book to those who need to get up to steam on SQL Security.
    Comment | 
    Was this review helpful to you?
    Most Helpful Customer Reviews on (beta) 4.0 out of 5 stars  2 reviews
    2 of 2 people found the following review helpful
    3.0 out of 5 stars Needs to be proof read better - both for grammar and technical accuracy 8 Dec 2013
    By Bluebill1 - Published on
    There is a lot of good information in the book, but the number of typos and grammatically incorrect sentences detract from the overall presentation. Even the author bio, which is a short paragraph, has a few sentences that are head scratchers - "Denny currently holds several all the Microsoft..." I almost put the book down after chapter 1 because of the lack of proofreading as this raises concerns regarding the technical accuracy. I've used SQL Server since version 4.2, when it was a combined Sybase/Microsoft product, so have a historical framework. Some of the security suggestions were quite good, but it seemed a lot of time was spent describing how to secure against poor practices rather than clearly designate something as a poor practice that shouldn't be allowed. People may not realize something is a poor practice and without it being clearly noted as such may follow the practice unwittingly. This isn't the case throughout, as the author was clear to state that SQL Servers shouldn't be directly exposed to the Internet, but this type of emphasis on what is a good or poor practice should be consistent throughout the book. Checklists or tables would be a good way to illustrate this, but that is limited to external audits for things like HIPPA and PCI - and even these are incomplete. This is not a book that you sit down at the server and use to implement security practices in a step by step manner. While there are a few coding examples, most of the information tends to be conceptual or partial examples. Some of the statements in the book were incorrect - such as on p. 15 - "The only secure way to connect from outside a network to inside the network is to use a Virtual Private Network (VPN) connection." These are the types of things that make the content the sense that it has to be read with caution and casts a bit of a cloud over the may good suggestions in the book. I would not recommend the book in its current form.
    2 of 5 people found the following review helpful
    5.0 out of 5 stars DBAs: Read this book or go flip burgers 2 Sep 2013
    By Paul Nielsen - Published on
    I'm a 9 year SQL Server MVP, I've written chapters on SQL Server security in my books (SQL Server 2000, 2005, 2008 Bible). But now that I run an ISV, this is the book that I depend on as I lock down my servers. If you have data in SQL Server, and you don't have this book, then you're most likely in the horrid position of not knowing what you don't know, and you're just you're asking for trouble. I know Denny, he's about as honest as they come and he knows his stuff inside out. I bought the first edition and now I have this edition. It's one of the very few books on SQL Server that I actually read. I can't emphasize enough, there are plenty of good and great books on SQL Server. This is one of the 3-4 books that you MUST read.
    Were these reviews helpful?   Let us know
    Search Customer Reviews
    Only search this product's reviews

    Customer Discussions

    This product's forum
    Discussion Replies Latest Post
    No discussions yet

    Ask questions, Share opinions, Gain insight
    Start a new discussion
    First post:
    Prompts for sign-in

    Search Customer Discussions
    Search all Amazon discussions

    Look for similar items by category