Don’t do it.<\/strong><\/li>\n<\/ol>\n <\/p>\n
Seriously, don’t.<\/p>\n
Storing passwords as a clear text string is a really, really, really<\/em> bad idea. Unfortunately, it is one of the more common approaches used by developers. I’m ashamed to admit that in my past life as a developer I have done this. \u00a0And while I think we can all agree that this is a not a good approach, so many times we do it anyway. \u00a0So, what are some of the thought processes behind using this method? Why would a developer store passwords as clear text when it’s common knowledge that you shouldn’t? Some of the reasons may be:<\/p>\n\n- It’s easier, and encryption is hard (supposedly)<\/li>\n
- No one is ever going to know. (Only the developers have access to the database, right?)<\/li>\n
- Rushed development, not enough time to fool with learning how to encrypt passwords properly<\/li>\n
- No one on the development team can agree on the best way to do it, so no one does anything<\/li>\n
- This application isn’t very important, so the passwords for it are not important<\/li>\n<\/ul>\n
Regardless of the reason, failing to encrypt passwords in a database can lead to serious trouble. If your database is ever compromised, and all of your user logins (for example) are sitting there in clear text, that’s bad. \u00a0Don’t think your database will ever be compromised? \u00a0What if your laptop is stolen with a copy of the database on it? \u00a0What if a report writer falls victim to a phishing scam? \u00a0SQL Injection? \u00a0Malware? \u00a0Social Engineering? \u00a0There are plenty of ways for your unencrypted data to get out into the world! \u00a0Data breaches are becoming more and more common, and when the FBI comes knocking on your door you need to be able to show them that you at least made a concerned effort to protect that data.<\/p>\n
Do these scenarios sound a little far fetched? Maybe, maybe not. I know for a fact that we have a local FBI office that does nothing but investigate data breaches. My point is, as developers and DBAs, we are entrusted with the gathering and storage of sensitive information such as passwords. It doesn’t matter if it is a login for an application to look at banking information, healthcare records, or cat videos, care should be taken to safeguard password information. So, when it comes to storing passwords as unencrypted clear text, remember this:<\/p>\n
Don’t. Do. It.<\/strong><\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":"
While storing passwords in a database may be a common practice, storing them properly usually isn’t so common. This is the first of a series of posts where we will …<\/p>\n","protected":false},"author":2,"featured_media":427,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[34],"tags":[51,22],"class_list":["post-418","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-storing-passwords","tag-top-developer-tips"],"yoast_head":"\n
Storing Passwords In A SQL Server Database - SQL Nuggets<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Storing Passwords In A SQL Server Database - SQL Nuggets\" \/>\n<meta property=\"og:description\" content=\"While storing passwords in a database may be a common practice, storing them properly usually isn’t so common. This is the first of a series of posts where we will ...\" \/>\n<meta property=\"og:url\" content=\"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/\" \/>\n<meta property=\"og:site_name\" content=\"SQL Nuggets\" \/>\n<meta property=\"article:published_time\" content=\"2017-05-16T16:00:06+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-05-16T16:03:15+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/www.sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"592\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Eric Cobb\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cfgears\" \/>\n<meta name=\"twitter:site\" content=\"@sqlnugg\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Eric Cobb\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#article\",\"isPartOf\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/\"},\"author\":{\"name\":\"Eric Cobb\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#\\\/schema\\\/person\\\/210536254addbc1b9d2d95dc1448b38a\"},\"headline\":\"Storing Passwords In A SQL Server Database\",\"datePublished\":\"2017-05-16T16:00:06+00:00\",\"dateModified\":\"2017-05-16T16:03:15+00:00\",\"mainEntityOfPage\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/\"},\"wordCount\":554,\"commentCount\":1,\"publisher\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#organization\"},\"image\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/cyber-security-e1494949546575.jpg\",\"keywords\":[\"Storing Passwords\",\"Top Developer Tips\"],\"articleSection\":[\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/\",\"url\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/\",\"name\":\"Storing Passwords In A SQL Server Database - SQL Nuggets\",\"isPartOf\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#primaryimage\"},\"image\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/cyber-security-e1494949546575.jpg\",\"datePublished\":\"2017-05-16T16:00:06+00:00\",\"dateModified\":\"2017-05-16T16:03:15+00:00\",\"breadcrumb\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#primaryimage\",\"url\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/cyber-security-e1494949546575.jpg\",\"contentUrl\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/cyber-security-e1494949546575.jpg\",\"width\":1280,\"height\":592},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/storing-passwords-sql-server-database\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\\\/\\\/www.sqlnuggets.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Storing Passwords In A SQL Server Database\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#website\",\"url\":\"http:\\\/\\\/www.sqlnuggets.com\\\/\",\"name\":\"SQL Nuggets\",\"description\":\"Nuggets Of SQL Server Knowledge\",\"publisher\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\\\/\\\/www.sqlnuggets.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#organization\",\"name\":\"SQL Nuggets\",\"url\":\"http:\\\/\\\/www.sqlnuggets.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2023\\\/11\\\/website-logo.jpg\",\"contentUrl\":\"https:\\\/\\\/sqlnuggets.com\\\/wp-content\\\/uploads\\\/2023\\\/11\\\/website-logo.jpg\",\"width\":320,\"height\":54,\"caption\":\"SQL Nuggets\"},\"image\":{\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/sqlnugg\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/ericcobb\\\/\"]},{\"@type\":\"Person\",\"@id\":\"http:\\\/\\\/www.sqlnuggets.com\\\/#\\\/schema\\\/person\\\/210536254addbc1b9d2d95dc1448b38a\",\"name\":\"Eric Cobb\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg\",\"caption\":\"Eric Cobb\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/cfgears\"],\"url\":\"https:\\\/\\\/sqlnuggets.com\\\/author\\\/eric-cobb\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Storing Passwords In A SQL Server Database - SQL Nuggets","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/","og_locale":"en_US","og_type":"article","og_title":"Storing Passwords In A SQL Server Database - SQL Nuggets","og_description":"While storing passwords in a database may be a common practice, storing them properly usually isn’t so common. This is the first of a series of posts where we will ...","og_url":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/","og_site_name":"SQL Nuggets","article_published_time":"2017-05-16T16:00:06+00:00","article_modified_time":"2017-05-16T16:03:15+00:00","og_image":[{"width":1280,"height":592,"url":"http:\/\/www.sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","type":"image\/jpeg"}],"author":"Eric Cobb","twitter_card":"summary_large_image","twitter_creator":"@cfgears","twitter_site":"@sqlnugg","twitter_misc":{"Written by":"Eric Cobb","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#article","isPartOf":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/"},"author":{"name":"Eric Cobb","@id":"http:\/\/www.sqlnuggets.com\/#\/schema\/person\/210536254addbc1b9d2d95dc1448b38a"},"headline":"Storing Passwords In A SQL Server Database","datePublished":"2017-05-16T16:00:06+00:00","dateModified":"2017-05-16T16:03:15+00:00","mainEntityOfPage":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/"},"wordCount":554,"commentCount":1,"publisher":{"@id":"http:\/\/www.sqlnuggets.com\/#organization"},"image":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#primaryimage"},"thumbnailUrl":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","keywords":["Storing Passwords","Top Developer Tips"],"articleSection":["Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#respond"]}]},{"@type":"WebPage","@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/","url":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/","name":"Storing Passwords In A SQL Server Database - SQL Nuggets","isPartOf":{"@id":"http:\/\/www.sqlnuggets.com\/#website"},"primaryImageOfPage":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#primaryimage"},"image":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#primaryimage"},"thumbnailUrl":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","datePublished":"2017-05-16T16:00:06+00:00","dateModified":"2017-05-16T16:03:15+00:00","breadcrumb":{"@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#primaryimage","url":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","contentUrl":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","width":1280,"height":592},{"@type":"BreadcrumbList","@id":"http:\/\/www.sqlnuggets.com\/storing-passwords-sql-server-database\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/www.sqlnuggets.com\/"},{"@type":"ListItem","position":2,"name":"Storing Passwords In A SQL Server Database"}]},{"@type":"WebSite","@id":"http:\/\/www.sqlnuggets.com\/#website","url":"http:\/\/www.sqlnuggets.com\/","name":"SQL Nuggets","description":"Nuggets Of SQL Server Knowledge","publisher":{"@id":"http:\/\/www.sqlnuggets.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/www.sqlnuggets.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"http:\/\/www.sqlnuggets.com\/#organization","name":"SQL Nuggets","url":"http:\/\/www.sqlnuggets.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"http:\/\/www.sqlnuggets.com\/#\/schema\/logo\/image\/","url":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2023\/11\/website-logo.jpg","contentUrl":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2023\/11\/website-logo.jpg","width":320,"height":54,"caption":"SQL Nuggets"},"image":{"@id":"http:\/\/www.sqlnuggets.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/sqlnugg","https:\/\/www.linkedin.com\/in\/ericcobb\/"]},{"@type":"Person","@id":"http:\/\/www.sqlnuggets.com\/#\/schema\/person\/210536254addbc1b9d2d95dc1448b38a","name":"Eric Cobb","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg","url":"https:\/\/secure.gravatar.com\/avatar\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3ca1fc0c7054a668e048f09d412cd4ebf89833c4630fbbfccca78a0678a6bdc2?s=96&d=mm&r=pg","caption":"Eric Cobb"},"sameAs":["https:\/\/x.com\/cfgears"],"url":"https:\/\/sqlnuggets.com\/author\/eric-cobb\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg","jetpack_shortlink":"https:\/\/wp.me\/pdyDvE-6K","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":440,"url":"https:\/\/sqlnuggets.com\/encrypting-passwords-using-encryptbypassphrase\/","url_meta":{"origin":418,"position":0},"title":"Encrypting Passwords Using EncryptByPassPhrase","author":"Eric Cobb","date":"June 6, 2017","format":false,"excerpt":"While storing passwords in a database may be a common practice, storing them properly usually isn't so common. \u00a0This is part of a\u00a0storing passwords blog series where we will examine some\u00a0of the options available for\u00a0storing passwords in a SQL Server database. To recap the introduction to this series, when you\u2026","rel":"","context":"In "Security"","block_context":{"text":"Security","link":"https:\/\/sqlnuggets.com\/category\/security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":641,"url":"https:\/\/sqlnuggets.com\/sql-server-permissions-manager\/","url_meta":{"origin":418,"position":1},"title":"SQL Server Permissions Manager","author":"Eric Cobb","date":"November 21, 2017","format":false,"excerpt":"Last week I announced\u00a03 new open source SQL Server projects that I have on GitHub.\u00a0 One of those projects is SQL Server Permissions Manager, and today I would like to discuss it\u00a0in more detail. SQL Server Permissions Manager is a suite of scripts that allows you to take \"snapshots\" of\u2026","rel":"","context":"In "Open Source Projects"","block_context":{"text":"Open Source Projects","link":"https:\/\/sqlnuggets.com\/category\/open-source-projects\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/11\/arrows-1577983_1280-e1511283424596.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/11\/arrows-1577983_1280-e1511283424596.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/11\/arrows-1577983_1280-e1511283424596.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/11\/arrows-1577983_1280-e1511283424596.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":27,"url":"https:\/\/sqlnuggets.com\/automating-backups-for-sql-server-2008-r2-express-edition\/","url_meta":{"origin":418,"position":2},"title":"Automating backups for SQL Server 2008 R2 Express Edition","author":"Eric Cobb","date":"June 9, 2015","format":false,"excerpt":"One of the limitations of SQL Server Express is that you can't automate backups in it via the SQL Server Agent like you can the other versions of SQL Server. You have to manually write the backup scripts and then schedule them to run in Windows Scheduled Tasks. This really\u2026","rel":"","context":"In "Backups"","block_context":{"text":"Backups","link":"https:\/\/sqlnuggets.com\/category\/backups\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":600,"url":"https:\/\/sqlnuggets.com\/notes-sql-2017-azure-install-using-group-managed-service-accounts\/","url_meta":{"origin":418,"position":3},"title":"Notes From A SQL 2017 Azure Install – Using Group Managed Service Accounts","author":"Eric Cobb","date":"November 7, 2017","format":false,"excerpt":"One of the new features that I'm excited about implementing on my Windows 2016 SQL Server 2017 servers is the ability to use\u00a0Group Managed Service Accounts, or \"gMSA\" for short.\u00a0 This isn't really a new feature, I believe it was first made available for SQL Server 2014 running on Windows\u2026","rel":"","context":"In "Availability Groups"","block_context":{"text":"Availability Groups","link":"https:\/\/sqlnuggets.com\/category\/availability-groups\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/10\/Cloud-Azure.jpg?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/10\/Cloud-Azure.jpg?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/10\/Cloud-Azure.jpg?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2017\/10\/Cloud-Azure.jpg?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":775,"url":"https:\/\/sqlnuggets.com\/sql-scripts-how-to-find-a-databases-compatibility-level\/","url_meta":{"origin":418,"position":4},"title":"SQL Scripts: How To Find A Database\u2019s Compatibility Level","author":"Eric Cobb","date":"April 17, 2018","format":false,"excerpt":"One thing that a lot of DBAs, especially Accidental DBAs such as myself, don't seem to realize is that just because a database is sitting on a specific version of SQL Server does not mean that database has all of the features of that SQL Server version enabled.\u00a0 To put\u2026","rel":"","context":"In "DB Engine"","block_context":{"text":"DB Engine","link":"https:\/\/sqlnuggets.com\/category\/db-engine\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/sqlnuggets.com\/wp-content\/uploads\/2018\/04\/black-and-white-blank-challenge-262488-e1523887336460.jpg?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":333,"url":"https:\/\/sqlnuggets.com\/persist-and-aggregate-index-stats-across-server-restarts\/","url_meta":{"origin":418,"position":5},"title":"Persist And Aggregate Index Stats Across Server Restarts","author":"Eric Cobb","date":"March 10, 2017","format":false,"excerpt":"(This script is part of my\u00a0SQL Server Metrics Pack\u00a0project that is now available on GitHub.\u00a0 If you like the code below and find it useful, I encourage you to check out the full project.) Maintaining indexes can be an important part of a DBA's job. \u00a0Researching an index to determine\u2026","rel":"","context":"In "Indexes"","block_context":{"text":"Indexes","link":"https:\/\/sqlnuggets.com\/category\/indexes\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.scarydba.com\/wp-content\/uploads\/2017\/03\/tumblr_lumv86RDOd1qdoit4-1.gif?resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/posts\/418","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/comments?post=418"}],"version-history":[{"count":0,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/posts\/418\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/media\/427"}],"wp:attachment":[{"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/media?parent=418"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/categories?post=418"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sqlnuggets.com\/wp-json\/wp\/v2\/tags?post=418"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"\"](\"https:\/\/sqlnuggets.com\/wp-content\/uploads\/2017\/05\/cyber-security-e1494949546575.jpg\")
While storing passwords in a database may be a common practice, storing them properly usually isn’t so common. This is the first of a series of posts where we will examine some of the options available for storing passwords in a SQL Server database.<\/p>\n