Re: SQL Server Profiler
From: Sue Hoegemeier (Sue_H@nomail.please)
Date: 05/28/02
- Next message: Sue Hoegemeier: "Re: Audit Logins - Preformance Issue??"
- Previous message: VUILLERMET: "Transfert login/password from 70-65 to 80"
- In reply to: Lour: "SQL Server Profiler"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Sue Hoegemeier <Sue_H@nomail.please> Date: Mon, 27 May 2002 22:17:51 -0600
You can monitor your firewall logs to get the IP addresses.
-Sue
On Fri, 24 May 2002 17:25:50 -0700, "Lour"
<mlgdelarosa@yahoo.com> wrote:
>I ran SQL Server Profiler. From the trace, I found out
>that there were a few times when someone tried logging in
>as 'sa' (good thing we do NOT have a NULL password for
>sa). We think hackers have been trying to get in. The
>profiler showed the hostname/clientname (machine name does
>not belong to our network domain) and the application name
>(it says "Microsoft Windows Script Host").
>
>Is there a way to trace the IP address of these client
>machines who are trying to hack into SQL Server?
>
- Next message: Sue Hoegemeier: "Re: Audit Logins - Preformance Issue??"
- Previous message: VUILLERMET: "Transfert login/password from 70-65 to 80"
- In reply to: Lour: "SQL Server Profiler"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
