SQLAuthority News – Download SQL Server 2008 System Views Poster – PDF – A Wall Poster

Microsoft has published SQL Server 2008 System Views Poster. This poster should be must have poster for any SQL Server Developer. I have this poster on my wall. If you have extra copy of this postered in print. Do send it to me and I will forward it to developer who are very good but can not afford to get this poster printed in glossy pages.

The Microsoft SQL Server 2008 System Views Map shows the key system views included in SQL Server 2008, and the relationships between them. The map is similar to the Microsoft SQL Server 2005 version and includes updates for the new and updated the Microsoft SQL Server 2008 features such as resource governor, extended events, full-text search, and others.

This is must have poster for every Database Developer and Database Administrator.

[Download is removed as new version of SQL Server is released]

You can find additional popular SQLAuthority Downloads Best SQL Server Downloads List.

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – CWE/SANS TOP 25 Most Dangerous Programming Errors

I just came across very interesting article from SANS Institute. Experts from more than 30 US and international cyber security organizations have released list of 25 most dangerous programming errors and their resolution. It may be possible that many of the programmers may not understand what this errors are and how to implement their solution. As said this are 25 most dangerous errors and all the developers should atleast know what they are so they do not are prevented from origin. Here are four major advantages listed by SANS.

  • Software buyers will be able to buy much safer software.
  • Programmers will have tools that consistently measure the security of the software they are writing.
  • Colleges will be able to teach secure coding more confidently.
  • Employers will be able to ensure they have programmers who can write more secure code.

Following is the list of 25 most dangerous programming errors.

CATEGORY: Insecure Interaction Between Components

CWE-20: Improper Input Validation
CWE-116: Improper Encoding or Escaping of Output
CWE-89: Failure to Preserve SQL Query Structure (aka ‘SQL Injection’)
CWE-79: Failure to Preserve Web Page Structure (aka ‘Cross-site Scripting’)
CWE-78: Failure to Preserve OS Command Structure (aka ‘OS Command Injection’)
CWE-319: Cleartext Transmission of Sensitive Information
CWE-352: Cross-Site Request Forgery (CSRF)
CWE-362: Race Condition
CWE-209: Error Message Information Leak

CATEGORY: Risky Resource Management

CWE-119: Failure to Constrain Operations within the Bounds of a Memory Buffer
CWE-642: External Control of Critical State Data
CWE-73: External Control of File Name or Path
CWE-426: Untrusted Search Path
CWE-94: Failure to Control Generation of Code (aka ‘Code Injection’)
CWE-494: Download of Code Without Integrity Check
CWE-404: Improper Resource Shutdown or Release
CWE-665: Improper Initialization
CWE-682: Incorrect Calculation

CATEGORY: Porous Defenses

CWE-285: Improper Access Control (Authorization)
CWE-327: Use of a Broken or Risky Cryptographic Algorithm
CWE-259: Hard-Coded Password
CWE-732: Insecure Permission Assignment for Critical Resource
CWE-330: Use of Insufficiently Random Values
CWE-250: Execution with Unnecessary Privileges
CWE-602: Client-Side Enforcement of Server-Side Security

Please go to SANS site and click on each error to find their resolution.

Reference : Pinal Dave (http://blog.SQLAuthority.com), list of 25 most dangerous programming errors

SQL SERVER – Top Five Articles of Year 2008

Year 2008 was great year for me. I got plenty of request from readers asking for Top 10 or Top 5 articles of the year 2008. I am including Top 5 Articles of Year 2008 in two different categories. First is my blog SQLAuthority.com and another one is my home page pinaldave.com

TOP 5 Articles at SQLAuthority.com

This section has six links as very first link is repeated again in top 5 pages at pinaldave.com

SQL SERVER – 2008 – Interview Questions and Answers Complete List Download
Most popular and most visited page. Very first and compilation of SQL Server Interview Question and Answers.

SQL SERVER – Insert Data From One Table to Another Table – INSERT INTO SELECT – SELECT INTO TABLE
Insert multiple records using SELECT statement.

SQL SERVER – Insert Multiple Records Using One Insert Statement – Use of UNION ALL
Insert multiple records using UNION clause.

SQL SERVER – 2005 – Create Script to Copy Database Schema and All The Objects – Stored Procedure, Functions, Triggers, Tables, Views, Constraints and All Other Database Objects
This is very common task among DBA and having this script handy saves some good time and work.

SQL SERVER – Import CSV File Into SQL Server Using Bulk Insert – Load Comma Delimited File Into SQL Server
Bulk inserting data from CSV file to SQL Server database is now simplified with this article.

SQL SERVER – Retrieve Current Date Time in SQL Server CURRENT_TIMESTAMP, GETDATE(), {fn NOW()}
Easiest way to get date time in SQL Server

TOP 5 Pages at pinaldave.com

SQL Server 2008 Interview Questions and Answers
Most popular and most visited page. Very first and compilation of SQL Server Interview Question and Answers.

Best SQL Server Downloads List
Second Most popular and most visited page. This page is compiles all the SQL Server related downloads.

SQLAuthority.com – Frequently Used Scripts
Keeping this scripts handy helps to resolve the many problems quickly.

Résumé
Pinal Dave – SQL Server MVP’s Resume.

About Me
Pinal Dave

Other Popular Links

Search @ SQLAuthority.com

Jobs @ SQLAuthority.com

Reference : Pinal Dave (http://blog.sqlauthority.com)

SQLAuthority News – Find Your IP Address – What Is My IP Address

While developing often my developers need to know which IP address is of local network when looked from outside. I am working in large outsourcing company and we have local intranet setup. When connecting to remote servers from local system or from remote servers to local system we always want to know our Live IP address.

Previously we have used many different methods to know our Live IP but nothing is reliable. External services often go down or provide incorrect information. I have added new feature to my site where any user can visit the page and find out their outgoing IP address.

Find Out Your IP Address

Reference : Pinal Dave (http://blog.SQLAuthority.com), IP Address

SQL SERVER – XML – Split a Delimited String – Generate a Delimited String

SQL Server MVP and my very good friend Jacob Sebastian has written two wonderful articles about SQL Server and XML. I encourage to read this two articles to anybody who are interested in learning SQL and XML.

How to generate a Delimited String using FOR XML PATH

XQuery Lab 19 – How to parse a delimited string?

I have previously written article about operation of creating delimited string using COALESCE and no XML but as per telephonic conversation with Jacob COALESCE is only good for one column where as XML can do many more magics.

Jacob has already explained articles in detail so I suggest to read them carefully and digest. If you are not much big on XML, you do not have to spend time on learning this XML. Just take the XML script and use it for your need.

If you are wondering what about two article do, here is simple explanation. First article explains how to convert Sample 1 to Sample 2 and later one explains how to convert Sample 2 to Sample 1.
Sample 1:
/*

CompanyID CompanyCode
———– ———–
1 1
1 2
2 1
2 2
2 3
2 4
3 1
3 2

*/

Sample 2:
/*

CompanyID CompanyString
———– ————————-
1 1|2
2 1|2|3|4
3 1|2

*/

XML is very powerful and when combined with SQL Server it always unveils new side of RDBMS and DBMS.

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – SQLAuthority Site With New Banner

I am glad to inform all the blog readers regarding new updated banner of this site. I would like to thank Ritesh, Sanjay and Rashmika who have spent their time to create the banner and gift to SQLAuthority.

I really liked the new banner and I think it goes better with the theam of this site. Let me know what is your opinion about new banner.

Old Banner :

New Banner : (Click on banner)

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – 3 Million Readers and Continuing Journey

I would like to express my deep gratitude towards your active participation on this blog. There are more than 3 Million of you have visited this site as well contributed to make it successful.

You can read my personally selected articles here.

SQLAuthority – Best Articles

SQLAuthority – Favorite Articles

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – Translation in International Languages – Arabic, Chinese, Dutch, French, German, Greek, Italian, Japanese, Korean, Portuguese, Russian, Spanish

Quite often I received the request to translate SQLAuthority in different languages. As I can not write in multiple languages but Google sure can do. Let me know what you think about it.

SQL Authority in Arabic

SQL Authority in Chinese (Simplified)

SQL Authority in Chinese (Traditional)

SQL Authority in Dutch

SQL Authority in French

SQL Authority in German

SQL Authority in Greek

SQL Authority in Italian

SQL Authority in Japanese

SQL Authority in Korean

SQL Authority in Portuguese

SQL Authority in Russian

SQL Authority in Spanish

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – Learn New Things – Self Criticism

I came across two interesting web pages and I really thought they had very good articles. I would like to share that with my blog readers today. I am just listing the abstract here. Please read the original articles they are much more interesting and enjoyable.

Readers if you find any interesting site like this, let me know and I will write about it.

10 Ways to Learn New Things in Development

1. Read books.
2. Read Code
3. Write Code
4. Talk to other developers
5. Teach others
6. Listen to podcasts
7. Read blogs
8. Learn a new language
9. Learn the anti-patterns
10. Be Humble

Learning means:
* Replacing faulty knowledge with better knowledge
* Adding knowledge that you do not already have

The most important quality of a developer: Self-criticism

Don’t just implement the first design you come out with, but try and refine looking at it from different angles before to start writing code. Don’t just release the first piece of code you come out with, but do a self review and try to make it clearer and better. The best developers/architects are the ones that always criticized their own work in order to make it better.

Reference : Pinal Dave (http://blog.SQLAuthority.com)

SQLAuthority News – Few Links About SQLAuthority

I have listed few important links of SQLAuthority.com, I still receive some repeated questions. I do my best to respond to all of my readers, however, most of the time I am sending them link to one of my previously written article. Many times most of the answers can be found right away by searching in this blog. I have created special search engine, which exclusively searches in this blog.

Search SQLAuthority.com – http://search.sqlauthority.com

Finding good database developer job is very hard and finding good database developer is even harder. For the same reason I have attempted to created only SQL Server related job site – http://jobs.sqlauthority.com where database related job can be posted by employee and found by candidates.

I have written so far more than 500 SQL Server related articles, I keep list of all the articles so I can refer them again when I want to. You can read all of my articles here – SQLAuthority All Articles. I also have some of my favorite articles listed here. I refer them quite frequently. Read SQLAuthority Best Articles.

Reference : Pinal Dave (http://blog.SQLAuthority.com)