Configuring a Windows NT account for MSSQLServer service and SQL Server Agent.

From: Alejandro Mesa (AlejandroMesa@GardensAmerica.com)
Date: 10/18/02 

From: "Alejandro Mesa" <AlejandroMesa@GardensAmerica.com>
Date: Fri, 18 Oct 2002 07:40:15 -0400

Hello everybody!

Reading a little bit about security and MS Sql Server, in http://www.microsoft.com/security/security_bulletins/ms02020_sql.asp,
one point that always has called my attention is:

a.. Run the MSSQLServer service and SQL Server Agent under a Microsoft Windows NT account, not localsystem.

Is there any place where I can find the specifications that this account has to meet?, specially for Windows NT 4.0 sp6a and Windows 2000 Server sp2.

Thanks in advance,

Alejandro Mesa

Relevant Pages

  • Re: SQL or Access DB
    ... As far as encryption goes though... ... with Sql Server you can use SQL DMO and encrypt your stored procedures ... installation - Security was absolutely critical and in most instances, ... > then we create a nice gui around this database and sell it to automotive ...
    (microsoft.public.dotnet.languages.vb)
  • Re: Is there any way to prevent hacker trying to guess sa password?
    ... and port 1433 will not be open. ... If someone can crash SQL Server by connecting to port 1433, ... You don't need multiple security experts. ...
    (microsoft.public.sqlserver.security)
  • Re: Getting to the bottom of MSDE network connection problems ...
    ... Brilliant, Nick, especially the explanation for local network user being ... authenticated as GUEST in WinXP SP2. ... > on a desktop OS like XP (meaning that, you can not compare SQL Server ... > again and selected the security tab. ...
    (microsoft.public.sqlserver.msde)
  • [NT] SQL Extended Procedure Functions Contain Unchecked Buffers
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... SQL Server 7.0 and 2000 provide extended stored procedures, ... Several of the Microsoft-provided extended stored procedures have been ... Exploiting the flaw could enable an attacker to either cause the SQL ...
    (Securiteam)
  • RE: Login failed for user (null).
    ... used at signon to authenticate in SQL Server. ... connect the remote SQL Server database), is there any other data accessing ... What's the security identity used to access the remote SQL Server, ... the worker process identity. ...
    (microsoft.public.dotnet.framework.aspnet.security)