November 17, 2005 at 9:11 am
Any way to decipher the password in the sysxlogins table in the master db?
Thanks for any an all help.
November 18, 2005 at 9:22 am
Not directly. You can guess at the password and then use the password encrypt function - PWDENCRYPT(). This stores the password as a one-way hash. Use PWDCOMPARE() to compare encrypted guess with the stored password. It is still a brute force method.
If you have forgotten a SQL Server login password you can change the password without knowing the current password. Use sp_password command or EM.
Francis
November 18, 2005 at 10:08 am
Not to my knowledge. However there are a few 'brute' force sql procs out on the web ... all of them need to be run as a 'sysadmin' ... a couple of them you have to specify the length of the password ... I've used 'em to 'crack' a few passwords just for fun (testing) ... it took sbout 8 hours for a 10 character one ... just google for:
sql server password cracking
There's lots of fun stuff out there ...
RegardsRudy KomacsarSenior Database Administrator"Ave Caesar! - Morituri te salutamus."
November 18, 2005 at 10:22 am
Thanks to you and "fhanlon" for the help. The password in question is for SA (no one remembers what it is) and I could change it via my domain admin account but I was trying to avoid it. Have to research the ramifications to the dbs in SQL if I change it. Thanks again.
Russ....
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply