Solved

sql server BPA 05/08

Posted on 2011-03-14
3
276 Views
Last Modified: 2012-05-11
I just came across the sql server best practices analyzer tool the other day.

My question is, what types of things does it identify.

What types of RISK does it identify, if any at all.

And basically what are the benefits of running it and  fixing the issues it finds, or what are the risks of ignoring the issues it flags up, i.e. worst case what could go wrong -- and likelehood of it going wrong if you dont fix it?
0
Comment
Question by:pma111
  • 2
3 Comments
 
LVL 14

Expert Comment

by:Daniel_PL
Comment Utility
It identifies your SQL and Windows settings in comparison with industry best practices.
http://www.mssqltips.com/tip.asp?tip=1972
http://www.databasejournal.com/features/mssql/article.php/10894_3493296_1/The-SQL-Server-Best-Practices-Analyzer.htm

There may be many risks of ignoring issues flagged by it, e.g. no database backup detected, old backups etc.

You can also find Microsoft Baseline Security Analyzer which helps to identify Windows administrative vulerabilities and/or IIS admionistrative vulnerabilities and/or weak passwords and/or SQL administrative vulnerabilities and/or check for security updates
http://technet.microsoft.com/en-us/security/cc184924
http://msdn.microsoft.com/en-us/library/ff647642.aspx
http://www.malwarehelp.org/using-microsoft-baseline-security.html
0
 
LVL 3

Author Comment

by:pma111
Comment Utility
Thanks so all the tests it tests for - if ignored - technically can create a risk?

Is there anywhere without downloading the tool which lists every test it tests for and the issue/risk of not doing it in line with such best practice?
0
 
LVL 14

Accepted Solution

by:
Daniel_PL earned 125 total points
Comment Utility
Thanks so all the tests it tests for - if ignored - technically can create a risk?
Technically, yes.

Is there anywhere without downloading the tool which lists every test it tests for and the issue/risk of not doing it in line with such best practice?
I don't think so, but you can try to analyze your system and than with report find out info about suggestions you've got - what do they bring, what do they solve etc.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

Occasionally there is a need to clean table columns, especially if you have inherited legacy data. There are obviously many ways to accomplish that, including elaborate UPDATE queries with anywhere from one to numerous REPLACE functions (even within…
For both online and offline retail, the cross-channel business is the most recent pattern in the B2C trade space.
Via a live example, show how to extract insert data into a SQL Server database table using the Import/Export option and Bulk Insert.
This videos aims to give the viewer a basic demonstration of how a user can query current session information by using the SYS_CONTEXT function

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now