Thanks for being there! If you were there then you know - it's was quite fun and you had a lot of questions - questions that I didn't see until the session ended (whooops!). My Q&A dialog box was only showing a subset of questions so I didn't know..... Well, now I do (that's for sure)! I've got a huge list that I'm working through (I did get most of them in my 20 mins of text responses) but I will post the entire written-up Q&A over the weekend - to my blog - and then to my website and to MSDN shortly thereafter. The demo scripts are already on www.SQLskills.com under Current Events (which will move within a couple of days to Past Events).

And - I guess I just wanted to say THANKS?! The great comments you posted in the Q&A (in addition to the great questions) really make my job fun! I really wouldn't do what I do if it weren't for everyone's great support!!!

So - the entire audio presentation w/powerpoint presentation, demo scripts, Q&A and [not sure if they'll do a] transcript should be posted to MSDN by mid-week next week. I'll provide all of these links as soon as they're available. AND - I think I'm going to request another webcast on Index Maintenance. Seems like that's something everyone wants to spend more time on!

This Friday I'll deliver an MSDN webcast on SQL Server Indexing - for people who are not SQL Server experts. It's a good overview of what you should look for, what you should do and which tools will give you the best bang for the buck when used correctly... Here's the MSDN link: http://msevents.microsoft.com/cui/eventdetail.aspx?eventid=1032252961&culture=en-us. See you there!

This is pretty exciting... Today we moved the blog over from the test site (where I added all of the other entries) to SQLskills... I guess I better start blogging. In fact, I think I'll try and blog most of the questions I get in email. In fact, I got two today. Stay tuned....

Today Michele and I were chatting about Security. She's focused a lot on it these days and is chatting with everyone about their best practices... I thought I'd mention a few important links/ideas here:

Login Mode:

• Allow windows authentication only - making sure that the sa account has a strong password set (regardless of the fact that with Windows Only set it's effectively disabled)
• When that's not possible and you need to allow SQL Authentication then make sure to use SSL so that the passwords are not transmitted in clear text.

Default Accounts Allowed Access - should you remove any?

• Do not remove the sa account - only make sure it has a strong password.
• Consider removing Builtin\Administrators (which is local machine\administrators group) BUT make sure that you have the following accounts setup as administrator or you could end up finding yourself locked out:
  • YOU!
  • Your SQLAgent
  • Your Cluster Admin - if you're running SQL Server on a Cluster

NOTE: if you do find yourself locked out with no way in... and have your server set to windows authentication only then as an NT Admin you can atleast set your SQL Server to Windows/SQL Auth and then login with the sa account (hopefully you know the password and hopefully you've set the password, realize that if your password is blank AND you do this there's nothing that will remind you that you have a blank SA password. If you change the authentication mode in SQLEM (but remember in this strange case you have no way to get in) then at least that prompts you for an SA password). PLEASE - get in and set the SA password ASAP. The registry key change is detailed in this KB Article in the section titled: Turn on Mixed Mode Authentication After You Install MSDE.

Interesting related link: PRB: Unsecured SQL Server with Blank (NULL) SA Password Leaves Vulnerability to a Worm

Above all - make sure that you adhere to many of the common best practices recommended:

• 10 Steps to Help Secure SQL Server 2000
• Microsoft Baseline Security Analyzer 
• SQL Server 2000 SP3 Security Features and Best Practices
• Security Section of Operations Guide

All sorts of purposes: maintenance, rebuilding the database objects, dropping/recreating the database in test environments, changing a state option like readonly (did you know that no users can be using the database when you make this change to RO)....

Anyway, lots of reasons and this has always been the case. In previous releases we used to create sp_ (you know this is a special naming convention for objects in master that can be referenced in any database WITHOUT three-part naming) stored procedures that would detect the users using a database and either KILL spid directly or do a net send and then use WAITFOR DELAY to give the users a couple of seconds/minutes/whatever, to complete. Well, procedures like that are still useful (because you can set the database to “dbo use only,” warn the user, and then give them some time... However, warning them typically uses xp_cmdshell (which a lot of you don't allow) and sometimes you don't want to wait and/or give them much time :) :).

So - did you know that ALTER DATABASE in SQL Server 2000 has been changed to allow termination options for STATE changes. The termination options allow one of three types of termination:

• Give the users n number of seconds to wrap things up
  • ALTER DATBASE dbname SET READ_ONLY WITH ROLLBACK AFTER
• Kick them out immediately
  • ALTER DATBASE dbname SET READ_ONLY WITH ROLLBACK IMMEDIATE
• Or, optionally you can have your process NOT WAIT
  • ALTER DATBASE dbname SET READ_ONLY WITH NO_WAIT

If no options are set and the process cannot get exclusive use of the database then it will till it can - indefinitely. Some database option changes generate a “could not get exclusive use” error but READ_ONLY (and a few others) don't. If this is in an automated script/process this can cause you a lot of grief. (In fact, I'm adding this note about 90 minutes after I created this blog entry...because my QA window is still trying to get exclusive access to pubs - which I was setting to readonly just to see if it would eventually time out....well, 90 minutes and still running it hasn't. I think I'm going to kill it!)

For a good example of how to change certain state changes when creating batch processes see, DB Alter for Batch Operation.sql (6.3 KB).

• Centralized logic which can be changed with minimal client impact
• Logic on the server so roundtrips are minimized
• Compiled plans saved in cache. Not every plan is saved, not every plan should be saved. However, the default is that stored procedure plans are compiled and saved - on first exection. The plan is NOT created when the stored procedure is created (I've also seen this written up incorrectly before) NOR is this plan saved permanently. There are many reasons for why the procedure's plan may fall out of cache:
  • Server restart
  • Falls out of cache due to low re-use (and not enough cache to keep it around)
  • Specifically being removed from cache by:
    • Executing DBCC FREEPROCCACHE to kick ALL plans out of cache (fyi - you can see what's in cache by querying master.dbo.syscacheobects)
    • DATA on which the procedure depends changing enough to cause the statistics to be invalidated and therefore sql server proactively invalidate the plan
    • Executing an sp_recompile (on the object(s) on which the procedure depends. This last one is also nice and something I sometimes force (off hours when a lot of indexes are being rebuilt and/or added). You can execute sp_recompile tname and it will cause all plans which access this table to be invalidated.

• Stored Procedures can be secure AND easier to manage - in terms of permissions.
• If I am the owner of a table and I create a procedure based on my table - I can give people access to the procedure withOUT giving base table permissions. This will allow better security and minimize the accidental "oh darns" when someone forgets a where clause on a delete. Imagine a user who types in DELETE Sales WHERE invnum = 1234 BUT highlights ONLY the DELETE Sales...whose problem is that? Mine as the DBA. We can all argue that users should not have ad-hoc access to the server (and I agree) BUT stored procedures create a layer of abstraction which is ALWAYS good especially if you are using DYNAMIC SQL.

Dynamic sql has many connotations... There is "Dynamic String Execution" which can be WITHIN a stored procedure and there's Dynamic SQL which is what an application builds and sends off to the server. As for a client who sends an ad-hoc string to the server or for a dynamically built string within a stored procedure - BOTH REQUIRE that the user have the ability to execute the command directly - which means there's more room for error. However, if it doesn't need to be in a dynamic string (and many statements can be parameterized) then it could be in a stored procedure WITHOUT dynamic string exection withOUT the possible room for HUGE SQL injection problems/errors. Speaking of SQL Injection - IF you use stored procedures and mostly only allow for Identifiers as parameters (i.e. tablename, viewname column names, etc.) then you can use the QUOTENAME() function to significantly reduce SQL injection.

• Ad-hoc statement caching (that was new in SQL Server 7.0 and higher)
• Forced statement caching (through sp_executesql)
• Stored procedure caching (by creating stored procedures)

-- 1) Clear Cache with

DBCC FREEPROCCACHE

-- 2) Look at what executable plans are in cache

SELECT sc.*
FROM master.dbo.syscacheobjects AS sc
WHERE sc.cacheobjtype = 'Executable Plan'

-- 3) execute the following statement

SELECT t.*
FROM pubs.dbo.titles AS t
WHERE t.price = 19.99

-- 4) Look again at what executable plans are in cache and you'll find that there's a

--     plan for a NUMERIC(4,2) (look at the "sql" column in output - far RIGHT)

SELECT sc.*
FROM master.dbo.syscacheobjects AS sc
WHERE sc.cacheobjtype = 'Executable Plan'

 

-- 5) If you execute the EXACT same statement with a 4,2 then you will get THAT plan
--     but if you execute with a 5,2 you'll get a new plan (the plan is not safe). Execute this:

SELECT t.*
FROM pubs.dbo.titles AS t
WHERE price = 199.99

-- 6) Look again at what executable plans are in cache...

SELECT sc.*
FROM master.dbo.syscacheobjects AS sc
WHERE sc.cacheobjtype = 'Executable Plan'

DECLARE @ExecStr    nvarchar(4000)
SELECT @ExecStr = N'SELECT t.* FROM dbo.titles AS t WHERE t.price = @price'
EXEC sp_executesql @ExecStr, N'@price money', 19.99

I would say that forced statement caching and stored procedure caching have the same problem(s) and that's that NOT all statements should be cached. There are certain strategies that can help to minimize costly overhead and there are certainly tips/tricks that we use to see if a plan should be saved or not. I think the number one thing I'd recommend is more modular procedures where the data returned SIGNIFICANTLY varies. The key reason is that smaller procedures tend to be more controllable. And - when a complex procedure is separately out then you can set that smaller more modular proc to be recompiled on each execution. That's probably the easiest way. There are certainly other things you can do to more effectively determine the cause of the problem (and that would be better) but I'd say that forcing recompilation on a smaller piece of code that generates widely varying sizes/sets of data is a good and generic solution.