Re: SQL Server Remote Management - Command Line Question
From: John Bell (jbellnewsposts_at_hotmail.com)
Date: 06/20/04
- Previous message: JDB: "SQL Server Remote Management - Command Line Question"
- In reply to: JDB: "SQL Server Remote Management - Command Line Question"
- Next in thread: Sue Hoegemeier: "Re: SQL Server Remote Management - Command Line Question"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 20 Jun 2004 22:10:19 +0100
Hi
The first thing you should do when someone leaves is to change the NT
password and remove them from all the NT groups they are in. This does not
help if you have SQL logins, but hopefully your databases are not exposed to
the outside world. Of course if someone has created a backdoor that noone
knows about you still have a problem.
John
"JDB" <jbell@vitria.com> wrote in message
news:10dbtdko5er6r4d@corp.supernews.com...
> As a Sys Admin, I was wondering - if I have admin rights to a Win2k
machine
> that is hosting SQL Server 2000, do I have the ability using any
> command-line tools such as OSQL or ISQL to add, delete, or change accounts
> registered in SQL Server for the various databases if I don't have access
to
> a specific account within SQL Server?
>
> I ask, because the question that came up was - what if we have a DBA leave
> under less than amicable circumstances? Could I, someone who has admin
> rights on the machine, be able to log into that machine remotely and
somehow
> via command line (I don't maintain active SQL clients centrally), change
the
> SA password, remove an account, and/or add an account with sysadmin
rights,
> etc?
>
> Thanks in advance for any help -
>
>
>
- Previous message: JDB: "SQL Server Remote Management - Command Line Question"
- In reply to: JDB: "SQL Server Remote Management - Command Line Question"
- Next in thread: Sue Hoegemeier: "Re: SQL Server Remote Management - Command Line Question"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
