Yukiwase
asked on
SQL 2000 User Log in Security for user SA
Hi, Experts members:
Currently using Windows XP Pro and SQL2000.
The problem is somehow SQL login name and password is compromized.
I checked the SQL security and found out the password of user sa contains some characters. It supposed to be null. There our automatic log in failed so as other applications that utilize SQL. I want to stop this happening again for near future.
Please help us.
Currently using Windows XP Pro and SQL2000.
The problem is somehow SQL login name and password is compromized.
I checked the SQL security and found out the password of user sa contains some characters. It supposed to be null. There our automatic log in failed so as other applications that utilize SQL. I want to stop this happening again for near future.
Please help us.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
![Avatar of Guy Hengel [angelIII / a3]](https://filedb.experts-exchange.com/files/public/2013/11/25/ddbe0ea6-aa6e-4279-b781-57b735dd3ea0.jpeg){kind=small}
stored procedures don't disappear like this...
this sounds like a db restore or some user/application indeed dropping the procedure
in the case you find the sa password compromised, you cannot go the "simple" way, but have to do the "changes at many locations" to be secure. which is more important that a avoiding some minutes or hours of work
next step is to centralize the management/update of the password, but that is another question
this sounds like a db restore or some user/application indeed dropping the procedure
in the case you find the sa password compromised, you cannot go the "simple" way, but have to do the "changes at many locations" to be secure. which is more important that a avoiding some minutes or hours of work
next step is to centralize the management/update of the password, but that is another question
ASKER
Thank you, Guy.
as you suggest, I have changed the password to more strong security
I'm still monitoring the system. So far, seems it is helping,
Thank you again.
Yuki
as you suggest, I have changed the password to more strong security
I'm still monitoring the system. So far, seems it is helping,
Thank you again.
Yuki
how could that be secure?
it should be a strong password, and applications should not use the "sa" account at all...
>I want to stop this happening again for near future.
what exactly do you want to stop happening?