Product learning

Posts by

Phil Factor

Phil Factor (real name withheld to protect the guilty), aka Database Mole, has 30 years of experience with database-intensive applications.

Despite having once been shouted at by a furious Bill Gates at an exhibition in the early 1980s, he has remained resolutely anonymous throughout his career.

He is a regular contributor to Simple Talk and SQLServerCentral.

Phil Factor

14 February 2019

Phil Factor

14 February 2019

How to create and refresh development and test databases automatically using SQL Clone and SQL Toolbelt

A PowerShell automation script to build a SQL Server database from source control, seed it with dummy data, document it, and then deploy copies to any number of test and development servers. Read more

12 February 2019

12 February 2019

A Database Developer’s Guide to SQL Clone

Phil Factor explains how SQL Clone works, and its multiple benefits when used in daily development and testing work, as well as for other tasks such as training staff to use a new application. Read more

4 February 2019

4 February 2019

Monitoring the Application with SQL Monitor: Website Activity

Using a PowerShell script that collects log data from a web server, plus a SQL Monitor custom metric, Phil Factor offers a way to check for suspicious website errors and unusual patterns of activity, right alongside your database monitoring. Read more

23 January 2019

23 January 2019

Using a Variable-length Datatype Without Explicit Length: The Whys and Wherefores (BP007/8)

If you declare a variable-length string , or coerce a string, without specifying its length, you can fall foul of ‘silent’ string truncation. Some developers resort to using the (MAX) specification, which is a mistake too. Phil Factor explains the dangers and then offers a workaround for the problem, when you're importing text and... Read more

11 January 2019

11 January 2019

The risks of using EXECUTE (‘SQL Script’)

SQL Prompt’s code analysis rule, BP013, will alert you to use of Execute(string) to execute a batch in a string, often assembled dynamically from user input. This technique is dangerous because the parameter values are injected before the statement is parsed by SQL Server, allowing an attacker to "tag on" extra statements. Use sp_ExecuteSql... Read more

SQL code smells

Phil Factor

8 January 2019

Phil Factor

8 January 2019

The Whys and Wherefores of Untrusted or Disabled Constraints

Having untrusted or disabled FOREIGN KEY or CHECK constraints in your databases will degrade data consistency and integrity and can cause query performance problems. Phil Factor explains how to detect these and other table-related issues, during development, before they cause trouble further down the line. Read more

Phil Factor

22 December 2018

Phil Factor

22 December 2018

On Quickly Investigating a SQL Monitor Custom Security Alert

Phil Factor offers a clever way to report on a SQL Server intrusion, with a query that shows a full narrative description of all the security-related changes that have been detected by a set of SQL Monitor custom metrics. Read more

SQL Server security monitoring

Phil Factor

13 December 2018

Phil Factor

13 December 2018

Database Continuous Integration with SQL Clone and SQL Change Automation

Phil Factor provides the basis for a Database Continuous Integration process, using SQL Change Automation to build the latest database, and then SQL Clone to distribute it to the various team-based servers that need it. Having honed the process, you can run it every time someone commits a database change. Read more

Phil Factor

5 December 2018

Phil Factor

5 December 2018

Build and fill a database using JSON and SQL Change Automation

Phil Factor demonstrates how to export data from a database, as JSON files, validate it using JSON Schema, then build a fresh development copy of the database using SQL Change Automation, and import all the test data from the JSON files. Read more

Phil Factor

15 November 2018

Phil Factor

15 November 2018

SQL Prompt Code Analysis: A Hint is Used (PE004-7)

Phil Factor suggests a philosophy of "the SQL query optimizer knows best" when it comes to choosing the right execution plan. Use hints as a last resort, and evaluate them carefully whenever SQL Prompt warns you of their presence in your SQL code. Read more

SQL code smells

SQL code analysis

Redgate Test Data Manager

Flyway

Redgate Monitor

Overview

Test Data Management

Automate

Monitor

Product learning

Posts by

Phil Factor

How to create and refresh development and test databases automatically using SQL Clone and SQL Toolbelt

A Database Developer’s Guide to SQL Clone

Monitoring the Application with SQL Monitor: Website Activity

Using a Variable-length Datatype Without Explicit Length: The Whys and Wherefores (BP007/8)

The risks of using EXECUTE (‘SQL Script’)

The Whys and Wherefores of Untrusted or Disabled Constraints

On Quickly Investigating a SQL Monitor Custom Security Alert

Database Continuous Integration with SQL Clone and SQL Change Automation

Build and fill a database using JSON and SQL Change Automation

SQL Prompt Code Analysis: A Hint is Used (PE004-7)

Redgate Test Data Manager

Flyway

Redgate Monitor

Overview

Test Data Management

Automate

Monitor

Posts by Phil Factor

Posts by

Phil Factor