none
Vulnerability management

    Question

  • Hi All,

    Do we have Vulnerability baseline which is defined for each version of DB?

    Also Vulnerability Cycle sample doc required

    Thanks

    David

    Wednesday, April 24, 2019 6:31 AM

All replies

  • Are you talking about SSMS tool?

    https://yusufanilakduygu.wordpress.com/2018/05/05/ms-sql-server-vulnerability-assessment-va-tool/


    Best Regards,Uri Dimant SQL Server MVP, http://sqlblog.com/blogs/uri_dimant/

    MS SQL optimization: MS SQL Development and Optimization
    MS SQL Consulting: Large scale of database and data cleansing
    Remote DBA Services: Improves MS SQL Database Performance
    SQL Server Integration Services: Business Intelligence

    Wednesday, April 24, 2019 7:40 AM
  • Hi All,

    Do we have Vulnerability baseline which is defined for each version of DB?

    Also Vulnerability Cycle sample doc required

    Thanks

    David

    Our Vulnerability Assessment Tool allows to create and use baselines.

    More here: SQL Vulnerability Assessment


    Andreas Wolter (Blog | Twitter)
    Senior Program Manager SQL Server & Azure Security

    MCSM: Microsoft Certified Solutions Master Data Platform/SQL Server 2012

    Wednesday, April 24, 2019 7:43 AM
  • No not SSMS VA tool I am looking for, do we have any common defined Vulnerability baselines for different versions?

    like different vulnerabilities (SA login enabled, Guest login, default port, etc.,) with their corresponding severity

    Thursday, April 25, 2019 10:01 AM
  • This is roughly what VA is for. It is supported from SQL Server 2012 onwards.

    Other than that there are numerous security recommendations and compliance available, depending on your industry and security needs. I would need to understand a bit better what you need and what for to point one out.


    Andreas Wolter (Blog | Twitter)
    Senior Program Manager SQL Server & Azure Security

    MCSM: Microsoft Certified Solutions Master Data Platform/SQL Server 2012

    Thursday, April 25, 2019 2:11 PM
  • Thanks Andreas

    I would just need few SQL Server vulnerabilities which we can use it as common baseline for various environments

    Thanks

    David

    Friday, May 3, 2019 6:08 AM
  • I am not sure why you would want to exclude existing vulnerabilities

    But you can essentially approve certain settings by setting them as a baseline. Then they will not show up any more.

    Also you can copy the checks. It's just T-SQL.

    good luck

    Andreas


    Andreas Wolter (Blog | Twitter)
    Senior Program Manager SQL Server & Azure Security

    MCSM: Microsoft Certified Solutions Master Data Platform/SQL Server 2012

    Friday, May 3, 2019 9:47 AM