Results 1 to 6 of 6
  1. #1
    Join Date
    Jan 2003
    Posts
    2

    Exclamation Unanswered: Hackes SQL Server 2000

    Hi Folks,
    i got hacked and the password perhaps also the username for connecting over enterprise manager was changed. Is there a possibility to get my old stuff back or to get the changed username and password ?
    Please help.

    Patrick

    System: windows2000Server
    DB: SQL 2000

  2. #2
    Join Date
    Oct 2002
    Posts
    369

    Re: Hackes SQL Server 2000

    Q1 Is there a possibility to get my old stuff back or to get the changed username and password ? Please help. Patrick
    System: windows2000Server
    DB: SQL 2000
    A1 Yes. One might redo the entire server using new secure passwords(then restore each user DB from backups taken well before the incident).

  3. #3
    Join Date
    Feb 2002
    Posts
    2,232
    Do you have any idea on how you were hacked ? How is sql used in your environment ? Do you have web access to your sql server through an asp page (a select/update/delete queries) - if so, you may have a problem with how the programmers created it - someone might be using sql injection to change things like the sa password.

  4. #4
    Join Date
    Dec 2002
    Location
    Czech Republic
    Posts
    249
    1. If you still have BUILTIN/Administrators login, you can change your EM registration properties from sa to WinAuth.

    2. LDF/MDF files can be attached to other/reinstalled server. Users lost.

  5. #5
    Join Date
    Jan 2003
    Posts
    2
    Hi guys,

    i have no chance to switch to winauth, it's not working.
    But i still have admin rights on the Server ??!!??
    I try now to copy the ldf/mdf files to another sql server to
    access them. What will happen with my DTS packages ?

    Patrick

  6. #6
    Join Date
    Dec 2002
    Location
    Czech Republic
    Posts
    249
    DTS is stored in system databases, probably msdb. You can also extract login names and probably passwords from master.

    One good source is
    http://www.sqlservercentral.com/

    There are queries how to decrypt passwords, restore system databases ...

    Master database can be attached to other server as MASTER2 and you can decrypt sa password from master2.dbo.sysxlogins !!!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •