Some cool SQL Server user names

Saturday, February 16, 2008

One day when I checked SQL Server messages in Event Viewer I found a long series of unsuccessfull attacks. Somebody desperately tried to guess user names and passwords.

NB! This blog is moved to gunnarpeipman.com

Click here to go to article

6 Comments

I had same problems on a testserver, like 10 attempts per second. Since this server is for development use everywhere we changed the port of the sql to another port so the developers still can login anywhere but no bot attempts anymore.

Mark - Saturday, February 16, 2008 9:38:38 PM
Yes, it is one solution but not the good one. Port scanners will still find you. Of course, you can set IP restrictions on your firewall. That's a little bit stronger protection.

Gunnar - Saturday, February 16, 2008 11:20:18 PM
Why, for the love of God, do you have SQL Server exposed to the outside world?!?

Shazam999 - Sunday, February 17, 2008 5:16:00 AM
Shazam, you will never know what kind of amazing solutions live out there :)

Gunnar - Monday, February 18, 2008 10:04:18 AM
well u can have..

exibit004 (or any number after)
what_about_me
dino_attack
me_and_my_fly

and think of some on your own =B

eve - Tuesday, July 14, 2009 1:47:31 PM
Shazam999 : I agree. If your making your database server available to the outside world, you're asking for it. Gunnar : Any solution exposing you database server is not amazing - it's the easy way out.

washier - Friday, November 6, 2009 8:22:35 AM

Comments have been disabled for this content.