Vlad Drumea
LightNews LightNews
vladdba.com
Vlad Drumea
@vladdba.com
140 followers 350 following 120 posts
Full time MS SQL Server DBA. Curious about InfoSec stuff.
Thoughts = my own.
https://vladdba.com
Maker of
https://github.com/VladDBA/PSBlitz
Posts Replies Media Videos
vladdba.com
New blog post:
In which I demo a pure T-SQL implementation of SQL Server 2025's new PBKDF2 hashing algorithm

#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba #sql #security
Replicating SQL Server 2025's PBKDF2 hashing algorithm using T-SQL
In this post I talk some more about SQL Server 2025's new PBKDF2 and demo a method to replicate it using T-SQL
vladdba.com
November 3, 2025 at 4:37 PM
vladdba.com
Get an additional 10% off of Brent's Black Friday sale prices - find out how: vladdba.com/discount-cod...
brento.bsky.social Brent Ozar @brento.bsky.social · 13d
Black Friday Doorbusters Are Open Now, Closing Monday!

You've been telling yourself, "One of these days, I'll finally take Brent's classes." Get ready, because that day is here: my Black Friday sale runs all November long, and it's my lowest prices all year! SQL Server 2025, 2022, and 2019 all…
Black Friday Doorbusters Are Open Now, Closing Monday!
You've been telling yourself, "One of these days, I'll finally take Brent's classes." Get ready, because that day is here: my Black Friday sale runs all November long, and it's my lowest prices all year! SQL Server 2025, 2022, and 2019 all dramatically changed the game for performance tuning. We have more and better tooling than we've ever had before, and there are new places to look when performance goes wrong.
www.brentozar.com
November 1, 2025 at 12:15 PM
Reposted by Vlad Drumea
malwaretech.com
The general manager of a US defense contractor selling sensitive stolen technology to Russia, then his seized assets being almost entire fake watches, is really something 😆

techcrunch.com/2025/10/29/f...
October 29, 2025 at 6:09 PM
vladdba.com
Imagine a 4TB unencrypted SQL Server database backup just sitting there for anyone to find.

#azure #sqlserver #security #infosec
www.neosecurity.nl/blog/ey-data...
The 4TB time bomb: when EY's cloud went public (and what it taught us)
How Neo Security discovered a 4TB SQL Server backup from Ernst & Young publicly exposed on Azure. A deep dive into cloud misconfigurations and why responsible disclosure matters.
www.neosecurity.nl
October 29, 2025 at 9:31 PM
vladdba.com
Me, every time I get a new hyper-fixation and start dumping money into it:
Sam Altman: Whether we burn $500 million, $5 billion, or $50 billion a year - I don't care
October 27, 2025 at 7:56 PM
vladdba.com
New blog post:
SSMS 22 Preview 3 comes with some promissing features and improvements.
And the startup speed has finally been noticeably improved
#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba #sql
vladdba.com/2025/10/16/s...
SQL Server Management Studio 22 Preview 3 - first impressions
SQL Server Management Studio 22 Preview 3 was released 2 days ago, so I took it out for a spin and here are my first impressions so far.
vladdba.com
October 17, 2025 at 8:01 PM
vladdba.com
The latest PSBlitz:
- Updated with non-sp versions of sp_Blitz(Cache/First/Index/Lock/Who), from Brent Ozar's October First Responder Kit
- Adds more memory & instance info
- Improves HTML table layout

#sqlserver #sqldba #powershell #microsoftsqlserver #mssqlserver #mssql #mssqldba #dba #Azure
PSBlitz.ps1 execution flow in PowerShell PSBlitz HTML report main/index page PSBlitz HTML report Instance Overview page PSBlitz HTML report Extended Index Diagnosis page
October 14, 2025 at 4:16 PM
vladdba.com
I'm reposting this blog post every time I have to troubleshoot a performance issue caused by this scenario where applications cause ASYNC_NETWORK_IO waits in SQL Server.
vladdba.com/2024/01/22/h...
#sqlserver #mssqldba #sql #dba #mssql #sqldba
How apps cause ASYNC_NETWORK_IO waits in SQL Server
In this post I cover what the ASYNC_NETWORK_IO wait type is, when it occurs, and applications cause ASYNC_NETWORK_IO waits in SQL Server.
vladdba.com
September 30, 2025 at 8:49 PM
Reposted by Vlad Drumea
malwaretech.com
Putting the Secret Service's nonsense framing aside, it's a pretty cool discovery. Those black boxes are SIM gateways which you plug sim cards into and they act like virtual cell phones. They then route the access over the internet so people can use the sim cards from anywhere in the world.🧵
1/3
September 23, 2025 at 4:38 PM
vladdba.com
The latest release of PSBlitz:
- Fixes a bug in the HTML report that was breaking hyperlinks to articles (MS Learn, blog posts, etc.)
- Addresses a data type overflow that occurred when retrieving instance information
#sqlserver #sqldba #powershell #mssqlserver #mssql
github.com/VladDBA/PSBl...
GitHub - VladDBA/PSBlitz: a PowerShell-based tool that outputs SQL Server health and performance diagnostics data to either Excel or HTML, and saves execution plans and deadlock graphs as .sqlplan and...
a PowerShell-based tool that outputs SQL Server health and performance diagnostics data to either Excel or HTML, and saves execution plans and deadlock graphs as .sqlplan and .xdl files. - VladDBA/...
github.com
September 22, 2025 at 6:22 PM
vladdba.com
Ah, yes, the mythical SQL Server 2018 that only Copilot and probably Satya know about.😅
Copilot Search returning information about Maximum Partitions in SQL Server 2018
September 12, 2025 at 6:29 PM
vladdba.com
Blog post from the past:
In which I address improper linked server configurations and their potential impact, as well as recommendations for securing SQL Server linked servers.
#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba
vladdba.com/2023/07/10/s...
Securing SQL Server linked servers
In this post I address improper security configurations and their impact, as well as recommendations for securing SQL Server linked servers.
vladdba.com
September 11, 2025 at 6:42 PM
vladdba.com
The latest release of PSBlitz:
- Fixes some bugs related to the HTML report
#sqlserver #sqldba #powershell #mssqlserver #mssql
github.com/VladDBA/PSBl...
GitHub - VladDBA/PSBlitz: a PowerShell-based tool that outputs SQL Server health and performance diagnostics data to either Excel or HTML, and saves execution plans and deadlock graphs as .sqlplan and...
a PowerShell-based tool that outputs SQL Server health and performance diagnostics data to either Excel or HTML, and saves execution plans and deadlock graphs as .sqlplan and .xdl files. - VladDBA/...
github.com
September 11, 2025 at 5:35 PM
Reposted by Vlad Drumea
2meterdba.bsky.social
I’m working on a blog post on why people should attend in-person events. I can think of many reasons but I’d love the input of the broader community. If you have a few seconds to spare, please fill in this link. Thanks! #DataSaturday #SqlSaturday #Meetup

forms.office.com/Pages/Respon...
Microsoft Forms
forms.office.com
September 1, 2025 at 8:30 AM
Reposted by Vlad Drumea
darthputinkgb.bsky.social
Talking Ukraine war with Xi
Me: "Any peace plan must require Zelensky to stop fighting"
Xi: "What will happen if he doesn't?"
Me: "Russia will lose"

I remain a master strategist
August 30, 2025 at 11:36 AM
vladdba.com
New blog post:
In which I demo two PoCs for SQL injection vulnerabilities fixed in SQL Server 2022 CU20 GDR KB5063814.
vladdba.com/2025/08/29/p...
#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba #sql #security #sqli #sqlinjection
PoCs for two SQL Injection vulnerabilities fixed in SQL Server 2022 GDR KB5063814
In this post I demo two PoCs for SQL injection vulnerabilities fixed in SQL Server 2022 CU20 GDR KB5063814
vladdba.com
August 29, 2025 at 3:27 PM
vladdba.com
In some weird uno reverse type of way a company has offered to pay me in "exposure" on my own blog for reviewing their product.
Thanks, vendor of [#database corruption recovery tool], but, as tempting as being paid with the opportunity to write a review for your product sounds, I'll have to pass.
This collaboration can be mutually beneficial. Your readers will gain access to insightful, high-quality technical content, while we will increase visibility for our product. It’s a win-win opportunity worth exploring.
August 27, 2025 at 5:51 PM
vladdba.com
Blog post from the past:
In which I cover how to fix performance problems caused by implicit conversion when the query cannot be modified.
#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba
vladdba.com/2024/09/15/i...
Fix implicit conversion when you can't change the query
In this post I cover ways to fix implicit conversion related performance problems when the query cannot be modified.
vladdba.com
August 21, 2025 at 7:23 PM
Reposted by Vlad Drumea
zacklabe.com
100 years of July temperature anomalies over land areas through 2025...

Data from NOAAGlobalTemp v6.0.0: www.ncei.noaa.gov/products/lan...
August 17, 2025 at 12:48 PM
vladdba.com
So, are people migrating from GitHub to Codeberg?
August 17, 2025 at 10:56 AM
Reposted by Vlad Drumea
darthputinkgb.bsky.social
Preparing for summit with Donald.
August 15, 2025 at 1:30 PM
vladdba.com
Blog post from the past:
In which I show a few examples of implicit conversions in SQL Server and the impact they can have on query performance
#sqlserver #sqldba #microsoftsqlserver #mssqlserver #mssql #mssqldba
vladdba.com/2024/09/11/i...
What are implicit conversions in SQL Server?
In this post I show a few examples of implicit conversions in SQL Server and the impact they can have on query performance.
vladdba.com
August 15, 2025 at 11:48 AM
Reposted by Vlad Drumea
malwarejake.bsky.social
Leopards, meet faces...
redthespian.bsky.social redthespian - Big Weird Lonely Snake Guy @redthespian.bsky.social · Aug 6
there's an episode of The Simpsons where Marge tries to get a violent cartoon pulled from the airwaves, only to discover that the people backing her aren't going to stop at just the art that *she* doesn't like, and that supporting artistic freedom means accepting discomfort.

It aired in 1990.
August 7, 2025 at 4:28 PM
Reposted by Vlad Drumea
dbatools.io
Upgrading from older versions? You'll need this ONE time:

```
Install-Module dbatools -Force -SkipPublisherCheck
```

After that initial transition, you won't need SkipPublisherCheck again since our cert keeps the same subject and root CA for version 2.5.5+ onward.
August 7, 2025 at 10:34 AM
Reposted by Vlad Drumea
metr0.bsky.social
As someone who entered the job market right around the dot com bubble bursting, I believe the correct question is "Do you think every major CEO could be wrong *for a third time in my lifetime*?"
August 4, 2025 at 4:33 PM