I have worked with SQL Server for many years now, back to Sybase SQL Server days and there has always been confusion over Logins and Users. Even though they typically use the same name they are ...

You can supply a second parameter for the Database user name, but if you leave it, the server will default to the same name as the SQL Server login, which is usually the best way to go.

Despite the plentiful information in Books Online and on the official “SQL Server 2000 Security” document Microsoft offers online, setting up a truly secure SQL Server remains a difficult task ...

Most SQL Server databases have a number of users viewing and accessing data, which makes security a major concern for the administrator. The smart administrator will take full advantage of SQL ...

Solving the Integrated Security Dilemma SQL Server 2000 offers two security modes: Windows Authentication Mode and Mixed Mode. Windows Authentication Mode requires the user to be authenticated by NT ...

How to protect your database from SQL injection, data theft, rogue users, and well-meaning meddlers without tying your environment in knots ...

A common criticism for SQL Server’s security model is that it only understands tables and columns. If you want to apply security rules on a row-by-row basis, you have to simulate it using stored ...

Microsoft SQL Server 2000 allows administrators to configure database security flexibly, and supports the U.S. government certification for C2-level installations in sensitive environments.

Additionally, Microsoft will subject SQL Server 2005 to the federal government’s Common Criteria certification from the National Security Agency.