SQL Server Security

From: Lour (mlgdelarosa@yahoo.com)
Date: 05/25/02 

From: "Lour" <mlgdelarosa@yahoo.com>
Date: Fri, 24 May 2002 17:04:54 -0700

I ran SQL Server Profiler. From the trace, I found out
that there were a few times when someone tried logging in
as 'sa' (we think it's a hacker). Profiler showed the
hostname/clientname and the application name (Microsoft
Windows Script Host).

Is there a way to trace the IP address of these client
machines who are trying to hack into SQL Server?

Relevant Pages

  • SQL Server Profiler
    ... I ran SQL Server Profiler. ... that there were a few times when someone tried logging in ... Is there a way to trace the IP address of these client ... machines who are trying to hack into SQL Server? ...
    (microsoft.public.sqlserver.security)
  • Re: SQL Server Profiler
    ... You can monitor your firewall logs to get the IP addresses. ... >I ran SQL Server Profiler. ... From the trace, I found out ... >machines who are trying to hack into SQL Server? ...
    (microsoft.public.sqlserver.security)
  • Problem profiling SQL 2000 server from 2008 profiler
    ... I am trying to run the Tuning profile in SQL Server Profiler 2008 against an ... SQL Server 2000 database, but I get the following error message when I try to ... Failed to start a trace. ...
    (microsoft.public.sqlserver.tools)
  • Re: SQL Server Security
    ... > I ran SQL Server Profiler. ... From the trace, I found out that there were ... > trying to hack into SQL Server? ... There has been a huge increase in scans on port 1433 to which SQL Server ...
    (microsoft.public.security)
  • Re: One Web Service updates SQL, another cant?
    ... section of the Trace Properties dialog. ... And then I start getting the database closed errors on subsequent calls. ... > The error suggests that somehow the connection to SQL Server is being ... Could we have a look at your connection string? ...
    (microsoft.public.sqlserver.security)