Internet access to your SQL Server?

Occasionally I see questions on dba.stackexchange.com where it appears the SQL Server is exposed directly to the Internet, allowing remote connections. This is very bad. In this post, I provide some reasons why. First, it…

Vulnerability Assessment recommends disabling Remote Admin Connections

SSMS 17 has the handy ability to run quick Vulnerability Assessments against your database. One of the Vulnerability Assessment checks looks to see if the Dedicated Administrator Connection, otherwise known as the “DAC”, is enabled…

How to identify a login in sys.dm_exec_sessions displayed as a SID starting with S-1-9-3

When looking at sys.dm_exec_sessions to see who is logged into a SQL Server instance, you may notice the login_name column contains a SID such as S-1-9-3-1474169822-1205489898-2971455952-561433448. This can happen as a result of using EXECUTE…