SQL Server Performance

Protect Your SQL Server Systems

Discussion in 'Forum Announcements' started by MohammedU, Sep 2, 2009.

  1. MohammedU New Member

    Quick Overview:
    On September 2nd 2009 Sentrigo released its Passwordizer tool to secure a Microsoft SQL Server vulnerability that enables unencrypted user passwords to be seen openly, by reviewing the contents of the process memory.
    Many users utilize a common set of passwords for multiple applications in both business and personal use. Therefore, we believe the threat of having these passwords exposed is a serious security risk.
    By running the Passwordizer utility, you will erase these passwords so that no administrator (or hacker pretending to be an administrator) will be able to access them. Following the instructions provided in the FAQ will allow you to set up the tool to run automatically, and also ensure the tool is not turned off without notification.
    This vulnerability exists in SQL Server 2000, SQL Server 2005, and SQL Server 2008, running on all supported Windows operating systems.
    Downloading Passwordizer from Sentrigo’s website is free of charge.
    http://www.sentrigo.com/passwords
  2. Luis Martin Moderator

    Thanks for sharing. I'll test it.
  3. ghemant Moderator

    Thanks for sharing, will test this :)
  4. moh_hassan20 New Member

    Who Is Affected?
    Organizations that are using SQL Server 2000, 2005 and 2008, running on all supported Windows platforms and are using the mixed authentication mode (also known as “SQL Server and Windows Authentication Mode”) are vulnerable to this password exposure.
    Microsoft SQL Server customers who are using Windows Authentication mode only are not exposed to this vulnerability. [;)]
  5. Luis Martin Moderator

    Only works for English versions.[:(]
    Or, does not work in OS Spanish version.
  6. Luis Martin Moderator

    After some mails with support, is necessary to execute with admin privileges.
    Works fine. Good tool.[:)]

Share This Page