question

user-720 (google) avatar image
user-720 (google) asked

I need to tighten the security of an existing SQL Server 2008 R2 by disabling certain Instance level configuration options

I need to tighten the security of an existing SQL Server 2008 R2 by disabling certain Instance level configuration options. For example, CLR, Trustworthy, xp_dirtree, xp_regread etc. How can I check whether disabling these will affect any of my applications/processes. This is a production server. Thanks for you help in advance.
securitysql2008r2
10 |1200

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

·
Grant Fritchey avatar image
Grant Fritchey answered
Best way to deal with that is to have a test machine with your applications running on it and do the tests there before you do them in production. If that's impossible (and it shouldn't be), then do a single change at a time on production, wait a full 24 hours for that change to impact your applications, then make another change. That way at least you'll know which change caused the issue.
1 comment
10 |1200

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Grant has it spot on. You need to take the scientific approach. Make a change document, observe and document some more before moving on to the next change / variable.
0 Likes 0 ·

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.