Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
CanadaDBA
583 Posts |
 Posted - 2004-11-16 : 08:43:02
|
| I was told that SA id is a very important id and shouldn't be used at all. Why SA password is important? When do we need to us it? My server has a very simple guess able password (inheriting from previous DBA). Is it dangerous?Canada DBA |
|
|
robvolk
Most Valuable Yak
15732 Posts |
Posted - 2004-11-16 : 08:52:28
|
| Yes. SA is a system administrator login, it has full and complete access to everything on the SQL Server and cannot be restricted or dropped. Having a weak sa password is akin to leaving your house unlocked, hell, completely open. sa should NEVER be used for any application login for this reason. In fact, sa should not be used at all except in the most dire of emergencies. New logins can be created and the appropriate permissions applied to do the same job(s) as sa. Windows administrators can also access SQL Server as long as the BUILTIN\Administrators group exists on the server. Regardless, you should IMMEDIATELY change your sa password to something very robust and difficult to guess. |
 |
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2004-11-16 : 20:45:49
|
quote:
Originally posted by robvolk
Windows administrators can also access SQL Server as long as the BUILTIN\Administrators group exists on the server.
but if you add the windows administrators login to the server, you can drop the builtin\administrators, which tightens your security and narrows it down to individual logins. There are local admins that should not access the sql server. we drop the builtin and the account used for logging onto the server is not allowed to access the server. For maintenance (netadmin, just in case), we provided a single server that can access the other servers (which is in plain view, so whatever they do on the server is witnessed by other netadmins).--------------------keeping it simple... |
|
|
|
|
|
|
SA id