May 5, 2009 at 1:36 am
my production database data was accessed through microsoftoffice 2007 excel.actually in my project there is no password for sqlserverauthentication.if we give username as 'SA' the data will be shown.so that how can i provide security for my production databases.
May 5, 2009 at 2:40 am
Hello,
It seems you do not have one already, so you (urgently) need to assign a strong password to the SA Login.
Best practice is to use Windows Integrated Security i.e. add Logins that map to the users who need access to the SQL Server and then grant these Logins the minimum permissions they need. Consider using roles and groups for this.
May be take a look through this MS article:-
http://technet.microsoft.com/en-gb/library/cc966454.aspx
Regards,
John Marsh
www.sql.lu
SQL Server Luxembourg User Group
May 5, 2009 at 3:34 am
Yes you (urgently) need to assign a strong password to the SA Login.
Secure your sa login account with a non-NULL password. There are worms that only work if you have no security for your sa login account. Therefore, to make sure that the built-in sa account has a strong password, you must follow the recommendation provided in the "System Administrator (SA) Login" topic in SQL Server Books Online, even if you never directly use the sa account.
Tanx 😀
May 5, 2009 at 3:52 am
how to provide security suppose if we are not provide the password?because of it is not possible to create password for
my production server.in that case how can i secure my production server in alternate way.
Thanks&Regards
kirankumar
May 17, 2009 at 7:22 am
Hello,
If your SA Login does not have a strong password then your SQL Server is not secure. Anyone who can access your network can do what they wish with your data and databases.
Regards,
John Marsh
www.sql.lu
SQL Server Luxembourg User Group
Viewing 5 posts - 1 through 4 (of 4 total)
You must be logged in to reply to this topic. Login to reply