This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Backend Security Project SQLServer Hardening"
From OWASP
(→Description) |
(→Description) |
||
Line 5: | Line 5: | ||
== Installation of the Engine == | == Installation of the Engine == | ||
− | + | === Service installed === | |
− | + | === Authentication Mode === | |
− | + | === Process === | |
== Configuration tools provided == | == Configuration tools provided == | ||
− | + | === Surface Area Reduction (services and connection) === | |
− | + | === Surface Area Reduction (functionality) === | |
− | + | === Sql Server Configuration Manager (endpoints and protocols) === | |
− | + | === Sql Server Administrators === | |
− | + | === System Stored Procedure (xp_cmdshell) === | |
== Database Administration == | == Database Administration == | ||
− | + | === Password Policies === | |
− | + | === Authorization === | |
− | + | === Roles and Schemas === | |
− | + | === Metadata Views === | |
− | + | === Linked Servers === | |
− | + | === Execution Context === | |
== Encryption == | == Encryption == | ||
− | + | === Symmetric === | |
− | + | === Asymmetric === | |
− | + | === Asymmetric with certificate === | |
= References = | = References = |