SQL Server Authentication hacking
From: dave (david_whitehouse@embanet.com)
Date: 09/24/02
- Next message: Arvid Mestdagh: "connection problem."
- Previous message: linda deng[MS]: "Re: SQL Service account rights"
- Next in thread: jimmers: "Re: SQL Server Authentication hacking"
- Reply: jimmers: "Re: SQL Server Authentication hacking"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "dave" <david_whitehouse@embanet.com> Date: Tue, 24 Sep 2002 03:49:07 -0700
I currently connect to SQL 7 and 2K servers using SQL
server authentication. This means that in the connection
string from the VB client application the username and
password is passed across the network (connection string
is shown below and uses ADO 2.7)
I am trying to find out if this method is venerable to
hackers who could potentially get this information and
then log in themselves. Is this the case or is the
information encrypted?
db.Open "Provider=SQLOLEDB.1;Password=xyz;Persist Security
Info=False;User ID=abc;Initial Catalog=DBname;Data
Source=servername"
- Next message: Arvid Mestdagh: "connection problem."
- Previous message: linda deng[MS]: "Re: SQL Service account rights"
- Next in thread: jimmers: "Re: SQL Server Authentication hacking"
- Reply: jimmers: "Re: SQL Server Authentication hacking"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
