| Author |
Messages |
|
james peaple
 |
| 09/11/2001 4:29 AM |
 Quote
 Reply
 Alert
|
| Can someone explain these two applications/proceess to me? I am not, as you can probably tell an SQl developer, but have been given the task of trying to lock down our servers, and these 2 methods seem to come up in all the papers I have read about sql security (not many), but they never mention more than udp packet to discover info and run Osql -L
thank sin advance for any help
James
|
|
|
|
|
Chip Andrews
|
| 01/01/2001 12:00 AM |
Quote
Reply
Alert
|
| For an overview of what is occuring take a look at this KB article:
http://support.microsoft.com/support/kb/articles/Q287/9/32.ASP?LN=EN-US&SD=gn&FR=0&qry=1434&rnk=5&src=DHCS_MSPSS_gn_SRCH&SPR=MSALL
For a quick high-level overview, it is possible for SQL Servers to discover one another via NetBIOS broadcasts as well as through a discovery mechanism utilizing UDP 1434.
It is assumed you will be blocking NetBIOS traffic at the firewall. It is also a good idea to block UDP 1434 at the firewall to make sure SQL Servers cannot be discovered by remote hosts. Hopefully you're doing all of this already.
Please ask if you have any more specific questions.
Chip
|
|
|
|
|
|