For the purposes of this, we’re ignoring SQL Server 7.0 and below.

Out of the box, SQL Server will encrypt some things by default to protect you and your data.  Out of the box, SQL Server will encrypt the passwords which are sent up from the client to the SQL Server. 

 This will keep the password from being sniffed on the network when logging in to the SQL Server instance.

SQL Server does this encryption using a self-signed certificate to ensure that the certificates always there.  If you have selected a different certificate for encryption, then SQL Server will use this certificate to encrypt the login data.

Denny

logo

The post appeared first on What does SQL encrypt by default? appeared first on SQL Server with Mr. Denny.

About the Author

Denny Cherry

I am a Senior SQL Server DBA at CDW with 10 years of IT experience, mostly as a software developer building web and windows based applications (VB, VB.NET, C#, C++ and a smidge of Java). I have always found database design and set based logic interesting, so 3 years ago I took the plunge and became a DBA, soon after I discovered people would tell anyone who would listen all about the SQL Server internals. I was hooked. I have not looked back since. The things I say represent my opinion and in no way represent the views or opinions of my employer or coworkers.

Start the discussion at forums.toadworld.com