Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
beniaminus
Starting Member
21 Posts |
 Posted - 2010-07-05 : 07:31:06
|
| Hello everyone. This is my first post here, and I doubt it will be my last :)I have a SQL Server 2005 instance that is open to remote connections.I have been checking the logs (like a good admin should) and I've discovered that there are a large amount of failed login attempts using usernames like sa, dba, root, etc. No doubt they're all from script kiddies trying to gain access but, never-the-less , it is a bit concerning.Does anyone have any good advice on how I could stop this, or at least make it happen less frequently?Thanks in advance,Ben |
|
|
Kristen
Test
22859 Posts |
Posted - 2010-07-05 : 11:23:51
|
| We use a PORT NUMBER higher than 10,000 (above the range that port scanners normally bother to scan).Firewall and block any non-authorised IP address would be another way.or do both! |
 |
|
|
beniaminus
Starting Member
21 Posts |
Posted - 2010-07-06 : 04:13:41
|
| Thats a damn good idea. Thanks very much!Ben :) |
|
|
|
|
|
|
Large number of failed remote connections