File-Sizing

One of the primary areas of responsibility for DBA’s is maintenance, and one of the primary maintenance tasks is file-size management. First I’ll present a list of the file-sizing tasks with short explanations for each one, then some background information, and then some T-SQL to give you the file sizes for all data and log…


Public Not Granted Server Permissions

The pre-defined policies that come with SQL Server 2008 include one called “Public Not Granted Server Permissions”. Running this policy in evaluation mode on a default installation will show a non-compliance failure due to 5 server-level permissions that are assigned to the public role during installation. Removal of these 5 permissions will make your server…

3

Import the Default PBM Policies

There are 50 Microsoft-defined policies and 71 conditions for Policy Based Management (PBM) that get put onto the hard drive when you install SQL Server 2008, but not installed into SQL Server Management Studio (SSMS) by default. You can import them by expanding Management/Policy Management, right-clicking on Policies, clicking on “Import Policy…”, and browsing to “C:\Program…

2

Making STIG Compliance Much Easier, Part II

Securing a system requires efforts that can be dropped into 3 buckets: Configuration, Alerting, and Auditing. (Am I missing any? Post a comment if you think of any others…) Securing a system’s configuration means its run-time configuration. Design-time is irrelevant except in how it impacts the run-time configuration, as it is only the actual run-time…


Making STIG Compliance Much Easier

Tired of struggling to implement the Database STIG on a server, only to have to repeat the process on another server, then another…? When you upgrade to SQL Server 2008, you can use policy-based management to dramatically reduce the workload. Define a policy once and apply it to all your servers at one time. Sweet! Download the SQL…

2