RestrictAnonymous=2 Question

From: Jason (mail_at_jasonmartinez.com)
Date: 07/30/03 

Date: 30 Jul 2003 12:19:40 -0700

I am installing SQL Server 2000 and I ran Microsoft's Baseline
Security Analyzer and it suggested that I change the
RestrictAnonymous=0 entry to RestrictAnonymous=2. When I read the the
KB article Q246261 it warned that doing that would lock out Mac Users
(we have many) and it is not recommended for groups that are not using
a mixed mode security. We use Novell authentication and not Windows
2000 and the main users will be connecting to the SQL Server data from
an Apache hosted web site. So my question is would it make my SQL
Server more secure if I set RestrictAnonymous=1? Will this work in a
mix mode authentication setting?

Thanks for you help,

Jason

Relevant Pages

  • Removed BUILTIN/Administrators from sysadmins - reinstall?
    ... a small IIS and SQL server as suggested by MS baseline ... security analyzer late one night I removed ...
    (microsoft.public.sqlserver.security)
  • Microsoft Baseline
    ... Microsoft Baseline Security Analyzer sagt: ... SQL Server übersprungen ...
    (microsoft.public.de.german.windowsxp.sonstiges)
  • RE: Connet to SQL Server?
    ... Mixed mode security works wonders. ... "Welles" wrote:> I just figured out the problem... ... and the way to solve it is to go to> Enterprise Manager, select server properties and on the Security tab change> Authentication mode to 'SQL Server and Windows'. ...
    (microsoft.public.dotnet.framework.adonet)
  • Re: Can authentication mode be changed after installation
    ... To set up Mixed Mode security ... Microsoft® SQL ServerT are recorded in the SQL Server error log: ... Auditing failed login attempts helps determine if unauthorized ...
    (microsoft.public.sqlserver.programming)