[Dshield] Patching SQL (OT?)

Deb Hale haled at pionet.net
Tue Jan 28 15:03:08 GMT 2003

Hash: SHA1

Does anyone know if there has been any reports of this attack affecting MS-SQL 7.0 servers?  All I am seeing is the 2000 references.


- -----Original Message-----
From: list-bounces at dshield.org [mailto:list-bounces at dshield.org] On Behalf Of Danny
Sent: Tuesday, January 28, 2003 8:28 AM
To: 'General DShield Discussion List'
Subject: RE: [Dshield] Patching SQL (OT?)

|>> I have to jump in on the patching thing here as well.
|>> I'm sys admin for a company that has 6 servers running MS SQL, all 
|>> of which were patched for this vulnerability.
|>Are these servers exposing a UDP port to the public Internet? Why 
|>would someone expose a DB server to the Internet? If the objective was 
|>multi- site connectivity, why isn't there a VPN in the path?

Probably because this is not a perfect world :). Don't get me wrong, I'm all for separating and firewalling various servers based on their role in the network, but in some cases it's just not possible for one reason or another. For example in the case of a university where the networks are large and pretty much flat IP space in a lot of cases and politics often get in the way of any "blocking" or in effect "censoring" user data. That's just one example, another would be knowledge, some companies employ less skilled workers to do the job because they are cheaper and these employees don't have the real world experience that a lot of us have so they just cant do the job effectively. Finally my last example would be the employer who hires qualified staff but either doesn't hire enough or piles to much work onto the staff they have which tends to lead to things being missed and mistakes being made.

These are just my opinions on the matter, let the flames begin :P 

Network Security Engineer
Drexel University

PGP Print:		C6AD B205 E3C6 38AB 0164 6604 66F5 CCFC F4ED F1E0
PGP Key:		http://akasha.irt.drexel.edu/danny.asc

list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see: http://www.dshield.org/mailman/listinfo/list

Version: PGP 8.0


More information about the list mailing list