January 6, 2008 at 1:19 am
plz let me know if i change these security objects what would be the effect on my databas either positive or Negative
althugh i have already SP4 patched on my database.
pls give me the recommendation.
1) SQL Server should run on non default port
2) All SQL Server services should be running on local account
and not on system account
3) Change Audit level to Failure
4) Drop Sample Databases
5) Remove Built-in administrator account from administrator role
6) Remove Guest account from all Databases
7) Configure the SQL Server to prevent direct updates to
system tables from Public Role (Master, MSDB)
8) Locking down Public Role to MSDB DB
i am waiting your wise openion .
Regards
Syed Muhmmad naveed
January 6, 2008 at 9:51 am
There isn't really a positive or negative response with these. It could go either way depending on your environment. Also, your title, audit objection, doesn't make sense. What are you trying to achieve.
For production servers, many of these might be done, though I've always runs the service on a domain user account (Regular, not administrator), so that I can get mail working and send alerts.
The default port doesn't necessarily help you. More you should have network security set up with routers and firewalls to prevent anyone from accessing SQL Server that shouldn'.
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply