Presenting about Module Signing at "Data Architecture Day" this Saturday (May 16th) at 4:10 PM EDT
Tag: Module Signing
Can a Certificate’s Private Key be Imported / Restored From a Binary Literal / Hex Bytes ?
Can a Certificate's Private Key be Restored From a Binary Literal / Hex Bytes? The Documentation Says, "No". What Does SQL Server Say?
SQLCLR vs SQL Server 2017, Part 9: Does PERMISSION_SET Still Matter, or is Everything Now UNSAFE?
Safely and Easily Use High-Level Permissions Without Granting Them to Anyone: Database-level
Come see how easy it truly is to "grant" high-level permissions in the safest, most granular, most controllable way.
SQLCLR vs. SQL Server 2012 & 2014 & 2016, Part 7: “CLR strict security” – The Problem Continues … in the Past (Wait, What?!?)
Safely and Easily Use High-Level Permissions Without Granting Them to Anyone: Server-level
Come see how easy it truly is to "grant" high-level permissions in the safest, most granular, most controllable way.
PLEASE, Please, please Stop Using Impersonation, TRUSTWORTHY, and Cross-DB Ownership Chaining
SQLCLR vs. SQL Server 2017, Part 6: “Trusted Assemblies” – Whitelisted Assemblies can’t do Module Signing
"Trusted Assemblies", a new feature starting in SQL Server 2017, is a means of whitelisting Assemblies that one feels pose no threat, and can be created (and used) without needing to be a) signed and b) have a corresponding signature-based Login that has been granted the UNSAFE ASSEMBLY permission. In Part 4 of this series… Continue reading SQLCLR vs. SQL Server 2017, Part 6: “Trusted Assemblies” – Whitelisted Assemblies can’t do Module Signing
SQLCLR vs. SQL Server 2017, Part 2: “CLR strict security” – Solution 1
(last updated: 2019-03-31 @ 16:30 EST / 2019-03-31 @ 20:30 UTC ) As mentioned in Part 1 of this "SQLCLR vs. SQL Server 2017" series, the new clr strict security server-level configuration option requires that in order to create any Assembly, even a SAFE one, it must be signed (by a Certificate or Strong Name… Continue reading SQLCLR vs. SQL Server 2017, Part 2: “CLR strict security” – Solution 1
SQLCLR vs. SQL Server 2017, Part 1: “CLR strict security” – The Problem
The Good, the Bad, and the Ugle̅e̅ (need to avoid copyright infringement ;-) ) (last updated: 2018-10-22 @ 10:40 EDT / 2018-10-22 @ 14:40 UTC ) SQL Server 2017 is soon to be officially released (i.e. RTM) and there are some impressive changes, with some being impressively good, and some being impressively bad. The Good… Continue reading SQLCLR vs. SQL Server 2017, Part 1: “CLR strict security” – The Problem