Re: Internet password attacks
From: FloMister (FloMister_at_discussions.microsoft.com)
Date: 08/30/05
- Next message: Brad M.: "Re: Preventing ALL text SQL Injection by removing single-quotes ?"
- Previous message: ErwinB: "Re: Server Registration fails - figure this out !"
- In reply to: Ross Presser: "Re: Internet password attacks"
- Next in thread: Sue Hoegemeier: "Re: Internet password attacks"
- Reply: Sue Hoegemeier: "Re: Internet password attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 29 Aug 2005 15:29:02 -0700
I've been programming for 20+ years and to me there are a number of
inexpensive solutions to this problem that Microsoft could deploy, but they
have delibertly choosen not to for whatever motive. The fact that no
Micrsoft MVP has responded to this post as I have seen in most other posts,
further backs this opinion.
Is there a Microsft MVP out there willing to touch this issue?
"Ross Presser" wrote:
> On Mon, 29 Aug 2005 08:22:51 -0400, Russell Stevens wrote:
>
> > <<Allow the SA account to be renamed in a service pack? You are mad>>
> >
> > No - the SP doesn't rename it, it gives the SQL admin the ability to change
> > it. If he has apps that use it, then he can fix them first or leave as is.
>
> There are many many parts *internal* to SQL server that depend on the sa
> account being named sa. A service pack that changes them all to tolerate a
> renamed sa account is a dangerous thing to do.
>
- Next message: Brad M.: "Re: Preventing ALL text SQL Injection by removing single-quotes ?"
- Previous message: ErwinB: "Re: Server Registration fails - figure this out !"
- In reply to: Ross Presser: "Re: Internet password attacks"
- Next in thread: Sue Hoegemeier: "Re: Internet password attacks"
- Reply: Sue Hoegemeier: "Re: Internet password attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
