Re: Is there any way to prevent hacker trying to guess sa password?
From: Ken Schaefer (kenREMOVE_at_THISadOpenStatic.com)
Date: 10/11/05
- Previous message: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- In reply to: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Next in thread: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Reply: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 11 Oct 2005 14:21:05 +1000
Is is absolutely required that port 1433 be open to the entire internet? If
not, why not use a firewall or similar to block all IP addresses except
those that should be permitted access?
Cheers
Ken
"Rob R. Ainscough" <robains@pacbell.net> wrote in message
news:%23qF1TlhzFHA.2640@TK2MSFTNGP10.phx.gbl...
: Hi Sue,
:
: I don't suppose Microsoft provide any such easy to use tools to monitor
: "patterned" network traffic -- i.e. the same IP attempting connection with
: my SQL Server every 10 seconds? Also is there anything in SQL Server 2000
: that can filter out an IP that attempts more than XYZ failed attempts at
: login with sa?
:
: It seems that 95% of hacker activity/patterns are very similar, but I'm
not
: finding anything in the MS 2003 Server nor in MS SQL Server 2000 that
would
: help identify and prevent these patterns -- am I just missing something?
:
: If not, are there any tools out there (paid or free) that are easy to use
: with minimal setup -- I'm a developer and don't have the time to spend on
: tracking stuff like this down and I've got more important task to
accomplish
: with looming deadlines.
:
: Any recommendation, tips, hints, web sites to visit would be most
: appreciated.
:
: Thanks, Rob.
:
: "Sue Hoegemeier" <Sue_H@nomail.please> wrote in message
: news:3l3mk1hjlkko4ncs8fajt0gn9m2gi3n4m6@4ax.com...
: > Nothing built into SQL Server 2000 - you have to get at this
: > through the OS level using Network Monitor or another
: > sniffer to capture the IP of the source.
: >
: > -Sue
: >
: > On Mon, 10 Oct 2005 13:01:32 -0700, "Rob R. Ainscough"
: > <robains@pacbell.net> wrote:
: >
: >>Some hacker has set off a program to try and guess the sa password to my
: >>SQL
: >>Server that is public (1433 is open) -- I'm logging all the attempts
: >>(about
: >>6 a minute from the start of my logging til now -- several 100,000
: >>combinations and counting.
: >>
: >>Is there anyway to detect the source IP and block/shut it down?
: >>
: >>Thanks, Rob.
: >>
: >
:
:
- Previous message: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- In reply to: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Next in thread: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Reply: Rob R. Ainscough: "Re: Is there any way to prevent hacker trying to guess sa password?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
