Post by account_disabled on Dec 13, 2017 6:48:14 GMT -5
I'm currently working on data security, so far I've been renaming the sa account, introducing TDE and introducing Backup Encryption.
The concern I have is with the Master Database.
I'm working on the scenario that if we get attacked, the attacker can stop SQL Server, copy the Master Database files, and attach the files as a different Database; thereby having the ability to read any information within the Master Database, including Logins, what databases are encrypted and how and so on.
So the question I have is there a way to protect the Master Database? Either by encrypting the Database or by preventing the Database files from being copied/pasted?
Please help.
Thanks!
I didn't find the right solution from the Internet.
References social.technet.microsoft.com/Forums/sqlserver/en-US/16c9f29a-7859-4acf-bdd8-1152110d6250/protecting-the-master-database?forum=sqldataaccess
Branding Motion Graphics video
The concern I have is with the Master Database.
I'm working on the scenario that if we get attacked, the attacker can stop SQL Server, copy the Master Database files, and attach the files as a different Database; thereby having the ability to read any information within the Master Database, including Logins, what databases are encrypted and how and so on.
So the question I have is there a way to protect the Master Database? Either by encrypting the Database or by preventing the Database files from being copied/pasted?
Please help.
Thanks!
I didn't find the right solution from the Internet.
References social.technet.microsoft.com/Forums/sqlserver/en-US/16c9f29a-7859-4acf-bdd8-1152110d6250/protecting-the-master-database?forum=sqldataaccess
Branding Motion Graphics video