Re: SQLDebugger Logon Locally

Call 1-866-pcsafety
Instruct them that you need to speak to a PSS Security representative that does forensic analysis of Servers.

Ping me back.
This needs to get looked at ASAP.


Liam Hawthorne wrote:
I posted this on SQL newsgroup but I have received no answers so i am reposting here.

THE PROBLEM
When i came into the office today I hit ctrl-alt-del and brought up the
logon menu. To my surprise the name in the User field was "SQLDebugger".
I was under the impression that this account was used only iternally to the
prgram and that by default it did not have local account logon privalleges.

Further, the event logs show five logons by the SQLDebugger from the IP
address 222.137.205.131...mainland china...

THE QUESTION
Is there a loophole being exploited?
Where can I disable or restrict this account?
It is not listed in Active directory.

Any help would be greatly appreciated.


.

Relevant Pages

  • Re: Account logon failed
    ... This is a common event with Microsoft networking products and ... Check each of the servers attempted, ... That creates the attempted logon. ... >The logon to account: in domain b ...
    (Security-Basics)
  • SUMMARY: ping-only account
    ... Monitoring is done by remote applications and they just watch ... > item they do is to log on to a system and do a ping. ... > restricted shell, account. ... > servers, the task is to one thing: ...
    (SunManagers)
  • ping-only account
    ... item they do is to log on to a system and do a ping. ... restricted shell, account. ... The problem is the high turnover of our monitoring personnel and the ... servers, the task is to one thing: ...
    (SunManagers)
  • Re: IIS Subauthentication Required
    ... Verify that the user account you created has the necessary logon permissions, and also verify that the user has the necessary NTFS permissions to the files/folders in question ... Now, in a normal IIS installation, IIS install creates the IUSR account (in ... >I have 4 Web servers that should all be set up the same; ...
    (microsoft.public.inetserver.iis.security)
  • Trust relationship failing between 2003 and 2000 servers
    ... I have 2 new Windows 2003 member servers in a Windows 2000 domain. ... logon locally as a 2000 domain administrator. ... Ping request could not find host onlinedc.online.2000. ...
    (microsoft.public.windows.server.active_directory)
Loading