John
Tue Jul 13 02:28:24 CDT 2004
Hi
This sounds like your SQL Server is not behind the firewall or as the others
have suggested the firewall is not configured correctly.
How do you know someone is trying to access the SQL Server? If this is being
reported from the firewall then it may be because it is dropping it!!
If you are not using windows only authentication, then make sure that you
have a strong sa password.You could run the Microsoft Baseline Security
Analyzer
http://www.microsoft.com/technet/security/tools/mbsahome.mspx to
make sure it is configured sensibly. I would also look at running IIS
lockdown on any webserver
http://www.microsoft.com/security/guidance/prodtech/IIS.mspx
Check out the advice on:
http://www.microsoft.com/sql/techinfo/administration/2000/security/default.asp
http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=24
John
"Ann" <nsajus@yahoo.com> wrote in message
news:cca0635f.0407121356.55ef3590@posting.google.com...
> Hi
>
> I have a question regarding the SQL Server(SQL Server 7) port 1433.
> Some body is trying to hack into our Windows 2000 server through port
> 1433. Is there a way i can close this port? I tried using a tool
> called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
> when we run netstat, it still looks like they are able to connect to
> the server using port 1433. Has anyone come across this problem? I
> would appreciate it very much if somebody could send in any
> suggestions regarding this.
>
> Thanks,
> Ann