Submit My Question - Recent Questions - Recent Answer
Msdn Tech >> SQL Server >> SQL Server Security

Microsoft Baseline Security Analyser 2.1

Hi

I downloaded MBSA and ran it against my SQL 2005 Server. It tells me that I have a severe risk because

'The following databases have public access.Remove the public access if it is not required - tempdb , model , msdb , ReportServer , ReportServerTempDB'

I have checked these databases and each have the Guest User but it is disabled. If I check the database properties the public role has no permissions against the listed databases.

Is this a bug with MBSA? If not how do I remove Public Access?

[536 byte] By [EwanWalker] at [2008-1-10]
«« The request failed with HTTP status 401: Unauthorized. - ReportService2005.asmx
»» How to make the dot line which represents the focus disappear?
# 1

Hi Ewan, are you using a Xp_cmdshell enabled?

EmanuelPeixoto at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 2

Hi Emanuel

I an not sure what you mean. I have installed the product MBSA on a PC running VISTA business and am scanning the SQL server from this PC. The server operating system is Windows Server 2003 R2

Regards

EwanWalker at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 3

Hi Emanuel

I have now looked it up and xp_cmdshell is not enabled

Regards

EwanWalker at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 4

The MBSA given't u more details about this vulnerability message?

EmanuelPeixoto at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 5

Hi Emanuel

No MBSA gives no further information on this message

EwanWalker at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 6

Ewan, has your sql server a valid internet ip address or any other network vulnerability?

EmanuelPeixoto at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 7
I mean, does your sql server is exposed on internet?
EmanuelPeixoto at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 8

Hi Emanuel

Only via Reporting Services

EwanWalker at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
# 9

I'm suggest you investigate any vulnerability on SSRS like a public access on web service.

see the link below, there is a cool tool to do a verification on any possible network vulnerability.

http://www.gfi.com/lannetscan/?adv=40&loc=3&adclickid=14102298

EmanuelPeixoto at 2007-10-3 > top of Msdn Tech,SQL Server,SQL Server Security...
SQL Server
SQL Server Security

SQL Server Hot Topic

SQL Server New Topic

SQL Server

Java / MSDN / Linux Tech / PHP Tech / MSDN DotNet / MSDN TECH / Health Library / Programmers Tech / visual basic Tech / Developer Tech / Ipod faqs / Msdn China Tech

Site Classified