Answer Posted / jerry joseph

1. identify and create optimal indexes for your tables

every table should have at least a clustered index

Indexes should be considered on all columns that are
frequently accessed by the WHERE, ORDER BY, GROUP BY, TOP,
and DISTINCT clauses

Static tables can be more heavily indexed that dynamic tables

2. An SQL Injection attack is a form of attack that comes
from user input that has not been checked to see that it is
valid. The objective is to fool the database system into
running malicious code that will reveal sensitive
information or otherwise compromise the server.

Example:
StrSQL = "SELECT * from Users WHERE username = '" +
txtUserName.Text + "' AND password = '" + txtPassword.Text +
"'";
if txtUserName is entered as "admin' OR 1 = 1;--" the query
becomes
"SELECT * from Users WHERE username = 'admin' OR 1 = 1;--'
AND password = '" + txtPassword.Text + "'"
user logs in as admin

Prevention :
Use Parameterized Queries or Stored Procedures to prevent
SQL Injection.

What is the default schema of your login session in ms sql server?

994

---

How to Insert multiple rows with a single insert statement?

1000

---

Suppose you want to implement the many-to-many relationships while designing tables. How would you do it?

955

---

Is it possible for a stored procedure to call itself or recursive stored procedure?

892

---

What is the fillfactor concept in indexes?

934

---

How can we solve concurrency problems?

994

---

Differentiate between sql temp table vs table variable?

830

---

Explain primary key?

898

---

what are cursors? : Sql server database administration

992

---

What is a domain constraint give an example?

1003

---

How do I start sql server 2016?

857

---

What is the dbcc command and why is it used?

995

---

What are the two authentication modes in sql server?

1058

---

How to create a testing table with test data in ms sql server?

1014

---

What does select 1 mean?

884

---