First published on TECHNET on Sep 16, 2010
The DoD Database STIG includes DG0155 (CAT II): The DBA will ensure all applicable DBMS settings are configured to use trusted files, functions, features, or other components during startup, shutdown, aborts, or other unplanned interruptions.
In the SQL Server 2005 Security Readiness Review (SRR): If the DBMS does not provide a means to ensure the trustworthiness of files at startup, this check is Not a Finding.
To comply with this STIG requirement, all you need to do in your Plan of Action and Milestones (POAM) is to cite the SRR and explain that as of SQL Server 2008 R2, no version of SQL Server provides a means to perform this check.
