May 15, 2008 at 2:35 pm
in ur case then u r in a war, and in a war no one wins, every one will get heart its just how far u will go.
i think u should leave this situation asap.
..>>..
MobashA
May 16, 2008 at 12:03 am
jsheldon (5/15/2008)
I have changed sa but really what is stopping the person from going to AD, changing my password, then logging into SQL, change 'sa' then do damage
Nothing, but that leaves evidence - the fact that you can't log in cause your password has changed
Also, nothing stops them restarting SQL in single user mode, which gives local admin sysadmin rights
Nothing stops them from shutting down SQL and deletng or corrupting data files.
You can make things more difficult, but you cannot prevent them. There's no real way to protect a system against an administrator.
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
Viewing 2 posts - 16 through 16 (of 16 total)
You must be logged in to reply to this topic. Login to reply