Hi Folks,
i got hacked and the password perhaps also the username for connecting over enterprise manager was changed. Is there a possibility to get my old stuff back or to get the changed username and password ?
Please help.
Patrick
System: windows2000Server
DB: SQL 2000Q1 Is there a possibility to get my old stuff back or to get the changed username and password ? Please help. Patrick
System: windows2000Server
DB: SQL 2000
A1 Yes. One might redo the entire server using new secure passwords(then restore each user DB from backups taken well before the incident).|||Do you have any idea on how you were hacked ? How is sql used in your environment ? Do you have web access to your sql server through an asp page (a select/update/delete queries) - if so, you may have a problem with how the programmers created it - someone might be using sql injection to change things like the sa password.|||1. If you still have BUILTIN/Administrators login, you can change your EM registration properties from sa to WinAuth.
2. LDF/MDF files can be attached to other/reinstalled server. Users lost.|||Hi guys,
i have no chance to switch to winauth, it's not working.
But i still have admin rights on the Server ??!!??
I try now to copy the ldf/mdf files to another sql server to
access them. What will happen with my DTS packages ?
Patrick|||DTS is stored in system databases, probably msdb. You can also extract login names and probably passwords from master.
One good source is
http://www.sqlservercentral.com/
There are queries how to decrypt passwords, restore system databases ...
Master database can be attached to other server as MASTER2 and you can decrypt sa password from master2.dbo.sysxlogins !!!
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment