SQL Server Security Risk Analysis - Code World

SQL Server Security Risk Analysis

Others 2022-04-10 14:37:24 views: null

1. View all users in SQL SERVER: (available for SQL 2000 or 2005)
Select * from sysusers;
insert image description here
2. View all users with empty passwords in SQL SERVER: (2000/2005 common)
select name,password from syslogins where password is null;

3. Set mssql so that only Windows local account can log in:

4. Set the database log audit:
Right-click the database, open the database properties, select Security, and adjust the audit level in Security to All. insert image description here

5. Perform network protocol encryption:
insert image description here

6. View database information and version:

Select @@version;

7. Determine whether xp_cmdshell exists in the current database;

select count(*) from master.dbo.sysobjects where xtype=‘x’ and
name=‘xp_cmdshell’;

If the returned result is not 0, it means that xp_cmdshell exists in the server;

8. Enable xp_cmdshell on the server:

Exec sp_configure ‘show advanced options’,1;
Reconfigure;
Exec sp_configure ‘xp_cmdshell’,1;
Reconfigure;

9. Use xp_cmdshell to execute stored procedure commands: insert image description here

10. Add xp_cmdshell:
insert image description here

Guess you like

Origin blog.csdn.net/qq_27180763/article/details/123682352

SQL Server Security Risk Analysis

Risk assessment based on data security (3): risk analysis and assessment

Gap analysis and risk assessment and other security evaluation of

Analysis of the importance of data security risk assessment

Security risk analysis and countermeasures for the circulation and use of data elements

Analysis and Countermeasures of Network Security Risk in Equipment Software Supply Chain

Application of AI technology in smart home security systems: vulnerability and risk analysis

SQL Server: Analysis Functions

[Database] SQL Server security settings

Sensitivity analysis and risk analysis

Analysis of SQL Server Blocking Causes

Simple Analysis of SQL Server Principle

Simple Analysis of SQL Server Principle

Enterprise Security—Risk Framework

$ _SERVER [ 'PHP_SELF'] Security Analysis

Zhian Network|Network Security Threat Risk Analysis: Identifying and Preventing Hacker and Phishing Attacks

SQL Server connection error with SSL security error

Test assessment and risk analysis

Risk Analysis in the Demand Phase

Risk Management and VaR Analysis

Code Security Stored Procedure Encryption and Security Context in SQL Server 2008

SQL statements implant risk

owaps Ten security risk vulnerabilities

Risk Assessment of Data Security (3)

SQL Server Analysis functions and the ranking function

Performance analysis of SQL Server — about CPU

Performance analysis of SQL server disk I / O

[Database] SQL Server deadlock analysis query

Transfer: Analysis of various data types of Sql Server

Transfer: Analysis of various data types of Sql Server

Recommended

Ranking

#2019110700005

What materials and procedures are required for patent transfer

What is the blockchain Ethereum triplet state root transaction root receipt root

Front-end study notes 04 --- About the insertion of html pictures and videos

Documents required for the filing of WeChat Mini Programs in special industries, the filing process of WeChat Mini Programs in special industries, how to file WeChat Mini Programs in special industries

2017 Qingdao-site tournament I The Squared Mosquito Coil

[BZOJ3165][HEOI2013]Segment (line segment tree without marking)

Kettle series: KettleEasyExpand, an open source Kettle universal plugin by Ma Jinju

The latest tutorial on making framework for iOS

DAX Section 6: Statistical Functions

Daily

More

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)