Blocking Telnet Command For SQL Server Detection 1433/1434
Aug 7, 2006Any ideas how I can I block telnet connections to SQL Server ports ?
ADVERTISEMENT
1434, 1433 - The Big Taboo...
Dec 18, 2006Security question regarding opening of port 1433, 1434 (or whatever SQL 2000/2005 port one assigns to SQL services to listen on).
I'm running in what appears to be paranoid sys admins when it comes to opening up port 1433, 1434 for MS SQL servers. When I ask why, they say it's a big security risk and then reference a SQL worm/security bug in SQL 2000 that happened about 2-3 years ago which has since been patched in SP3 onwards. So I say ok, so it's been patched so why can't the port be open now? Cause it happened once and only compromised very few SQL servers and as of todate, no one can positively suggest that the bug even exposed any useful/sensitive data?
But what I can't really understand, is that sys admins will be ok with opening port 80 for web servers and port 443 for SSL -- these are listening services also, that to my knowledge have the same level of security exposure as port 1433/34. Is it because these services haven't successfully (yet) been crashed to a point of user account exposure? Is that the only reason for the port 1433/34 paranoia?
I realize port 1433/34 are under 24/7 login attempts from drones (have monitored this activity) but other than resources use/traffic, these attempts are pretty useless with appropriate user/password accounts setup on the SQL server.
Can someone clarify this with me?
Thanks, Rob.
Canot Telnet Into Port 1433 Affter Intalling SQL Server !
Sep 21, 2006I'm working on a completely virgin install of SQL Server 2k in Windows 2003.
Just after install I check that the TCP/IP protocol is enabled under the
server properties and then I try to Telnet into port 1433. On this one
particular box I get back the following:
C:>telnet localhost 1433
Connecting to localhost...Could not open connection to the host, on port
1433: Connect failed.
For comparison I tested telnet on a couple other machines and I get back a
blank window ready for my commands, as I'd expect.
I've checked the firewall settings and other IP Filtering settings to see if
any of those were blocking traffic to 1433... nothing. I've triple checked
the SQL Server settings for any "problems" and nothing jumps out at me.
Can't Telnet X.x.x.x 1433 On Localhost
Oct 4, 2006Hi,
I used Microsoft SQL server 2000 on Microsoft Windows Server 2003 for database server and used Redhat Linux Enterprise for Web server.
I wrote the PHP script (on Redhat) connect to database server, its does not work. And then I install freetds on Web server but not work too.
I have problem not be solve...
- on Redhat, cannot telnet x.x.x.x 1433 to database server. But telnet to other port is success.
- on database server, cannot telnet x.x.x.x 1433 and telnet 127.0.0.1 1433.
- between web server and database server can used ping !
- I used command 'netstat -an' on database server is not show for 1433 port.
please help me... :eek:
SQL Server SP2 Command Line Upgrade Switch And Express Version Detection
Mar 9, 2007Our application installation setup needs to be able to detect:
Is SQL Server 2005 Express Installed?
If false, run the SP2 Installation
Is SQL Server 2005 Express or SQL Express SP1 Installed?
If false, run the SP2 Installation with Update Switch
Is SQL Server 2005 (not Express) Installed
If true, abort installation with a mesage.
Can you direct me to some documentation about testing for these environments or just if someone has some scripts that will run in InstallShield, that would be great.
ALSO, can you direct me to information about using the command line update switch for the Express SP2 Installer?
Thanks.
Pat
Sql Server Connection Via Telnet
Oct 28, 2006
hello
How can we Connect the SQL server Via TELnet.
Client system at LAN "A"........
Sql Server Instance at LAN "B".....
So, how can i connect these two , along with how to send the Querries to sql Server at Lan "B" inorder to retrive from the server to Client......
Can Anybody help in this regard and give a small details / give a path to find out this..
Thanx in Advance..........
MSI And SQL Server Detection
Dec 21, 2003how do they provide the dialog box in the start kits, the one with the combo boxes of available servers, and a test connection button?
You can add custom forms in visual studio setup wizard project, but I haven't been able to figure it out yet - what do they use in the starter kits?
SQLServer Redirector Port 1434
Jul 23, 2005I'm doing some vulnerability assessments of MS SQLServer installationsusing AppDetective.On doing the "discovery" proble (to find the instances), I find that Iget two "hits" -- port 1433 shows the MS SQALServer instance, but port1434 comes up with MS SQL Server Redirector.The online books seems to be a bit light on waht the use of this portis for.I thought that port 1433 was the port on which SQLServer listens forODBC connections.However, port 1434 seems to be used for the same purpose.Any additional information of a non-technical level (my manager needsto know this and he's not a DBA) is greatly appreciated.Thanks in advance!
View 1 Replies View RelatedReplication Loop Back Detection Problems In SQL Server 2000
May 10, 2007Hi,
I am monitoring my replication process and I have a problem with the loop detection, I can see origined transacctions in the server, executed in the same for the replication.
The subscriptions configuration is sp_helpsubscription
exec sp_addsubscription @publication = N'PUBLICATION',
@article = N'all',
@subscriber = N'192.168.0.23',
@destination_db = N'PRUEBABD',
@sync_type = N'none',
@update_mode = N'read only',
@offloadagent = 0,
@dts_package_location = N'distributor',
@loopback_detection = 'true'
GO
I need for help.
How Can I Tell Whether SQL Server Is Able To Listen To Port 1433?
Jun 20, 2004I want to know how to check whether SQL Server 2000 can listen to port 1433 or not. If I run netstat -a, am I suppose to see port 1433 regardless of what service pack I have applied to SQL Server 2000?
View 14 Replies View RelatedSQL 2012 :: Opening 1433 Port For Server Cluster
Jun 21, 2015SQL Server 2012 two node single instance cluster.
For DB access from application severs, do we need to open port (1433) for NODE IPs too ?
Or is it enough if we open the port 1433 only for VIRTUAL IP ?
Block Port 1433 On Windows 2000 Server
Jul 20, 2005HiI have a question regarding the SQL Server(SQL Server 7) port 1433.Some body is trying to hack into our Windows 2000 server through port1433. Is there a way i can close this port? I tried using a toolcalled Ipsecpol.exe ( Internet Protocol Security Policies Tool). Butwhen we run netstat, it still looks like they are able to connect tothe server using port 1433. Has anyone come across this problem? Iwould appreciate it very much if somebody could send in anysuggestions regarding this.Thanks,Ann
View 6 Replies View RelatedUnable To Telnet
Jul 17, 2007Hello,
I was trying to telnet a remote server but I get following error message.
Connecting To "Remote machine address" Could not open a connection to host: Connect faile
Can anyone tell me what to do?
Telnet Disconnect
Nov 5, 2007Running server 2003. I am running a program from home and am telneting in. When I leave for over 1/2 hour without inputting anything it disconnects me. How can I reset this setting to several hours befor it will disconnect me?
View 1 Replies View RelatedWswp.exe Accessing Ms-sql On 1433 When Server=(local) On Conn String
Dec 19, 2007Hello everyone,
I have the sql connection string configured in my web application as
data source=(local); provider=sqloledb.1; user id=<<user id>>; password=<<password>>; database=<<database>>
My understanding is that when (local) is used, the connection method will fall to shared memory / named pipes. I have names pipes and TCP/IP enabled in the configuration manager.
My machine is also running Comodo Firewall .
Now this is what is happening. When I try to access the asp.net application, I get a component exception in comodo firewall that indicates w3wp.exe is trying to access the sql server via the machine's IP over port 1433. This happens when I try to load the application in the browser.
What I dont understand is that when (local) is configured, it should only access thru shared memory / named pipes. Why is it trying to connect thru TCP port. Is this because I have the sql username and password? My SQL server is configured for mixed mode authentication.
Thanks
RK
Test SQL Connection With Telnet
Aug 23, 2007I have just been able to configure remote connection on SQL 2005. I can also access the AdventureWorks database remotely via ODBC on port 1433. The install directions of a some software instruct me to do telnet <hostname> 1433 to check for connectivity. It doesn't work! I gave my instance the name RM and I also tried telnet <hostname>RM 1433 but again failed.
When I try just telnet <hostname> it works.
Can anyone help?
What Is The Portnumber For Sql Server 2K( Sql Server 2005 Uses 1433)
Apr 1, 2008
What is the portnumber for Sql Server 2K( Sql Server 2005 uses 1433)
thanks,
J
Telnet Connection Works, Sql Cmd Connection Works, SQL Server Managment Studio 2005 Does Not
Jun 20, 2007I'm having a strange problem with this but I know (and admit) that the problem is on my PC and nowhere else. My firewall was causing a problem because I was unable to PING the database server, switching this off gets a successful PING immediately. The most useful utility to date is running netstat -an in the command window. This illustrates all the connections that are live and ports that are being listed to. I can establish a connection both by running
telnet sql5.hostinguk.net 1433 and
sqlcmd -S sql5.hostinguk.net -U username -P password
See below:
Active Connections
Proto Local Address Foreign Address State
TCP 0.0.0.0:25 0.0.0.0:0 LISTENING
TCP 0.0.0.0:80 0.0.0.0:0 LISTENING
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:443 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1026 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1433 0.0.0.0:0 LISTENING
TCP 81.105.102.47:1134 217.194.210.169:1433 ESTABLISHED
TCP 81.105.102.47:1135 217.194.210.169:1433 ESTABLISHED
TCP 127.0.0.1:1031 0.0.0.0:0 LISTENING
TCP 127.0.0.1:5354 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51114 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51201 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51202 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51203 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51204 0.0.0.0:0 LISTENING
TCP 127.0.0.1:51206 0.0.0.0:0 LISTENING
UDP 0.0.0.0:445 *:*
UDP 0.0.0.0:500 *:*
UDP 0.0.0.0:1025 *:*
UDP 0.0.0.0:1030 *:*
UDP 0.0.0.0:3456 *:*
UDP 0.0.0.0:4500 *:*
UDP 81.105.102.47:123 *:*
UDP 81.105.102.47:1900 *:*
UDP 81.105.102.47:5353 *:*
UDP 127.0.0.1:123 *:*
UDP 127.0.0.1:1086 *:*
UDP 127.0.0.1:1900 *:*
Both these utilities show as establishing a connection in netstat so I am able to connect the database server every time, this worked throughout yesterday and has continued this morning.
The problem is when I attempt to use SQL Server Management Studio. When I attempt to connect to tcp:sql5.hostinguk.net, 1433 nothing shows in netstat at all. There is an option to encrypt the connection in the connection properties tab in management studio, when I enable this I do get an entry in netstat -an, see below:
TCP 81.105.102.47:1138 217.194.210.169:1433 TIME_WAIT
TCP 81.105.102.47:1139 217.194.210.169:1433 TIME_WAIT
TCP 81.105.102.47:1140 217.194.210.169:1433 TIME_WAIT
Amost as if it's trying the different ports but you get this time_wait thing. The error message is more meaningful and hopefull because I get:
A connection was successfully established with the server, but then an error occurred during the pre-login handshake. (provider: SSL Provider, error: 0 - The certificate chain was issued by an authority that is not trusted.) (.Net SqlClient Data Provider)
I would expect this as the DNS has not been advised to encrypt the conection.
This is much better than the : Login failed for user 'COX10289'. (.Net SqlClient Data Provider) that I get, irrespective of whether I enter a password or not.
This is on a XP machine trying to connect to the remote webhosting company via the internet.
I can ping the server
I have enabled shared memory and tcp/ip in protocols, named pipes and via are disabled
I do not have any aliases set up
No I do not force encryption
I wonder if you have any further suggestions to this problem?
SQL Server 7 Blocking
Apr 24, 2002I have a powerbuilder application that is connecting to SQL Server. We get very frequent DeadLock situations. Is there a way that I can check to see as what SQL is causing the Lock?
Thanks in advance for any suggestions...
-Raj
Sql Server Service Blocking
Dec 22, 2005Hello All
I have w2k enterprise sql server with 2k3 windows enterprise. 180 users connects and runs video editing system. user connection value of Sql server:General Statistics is about 1400.
I upgraded my hardware from 4X xeon 2.2ghz. server to 8XAMD opteron dual core CPUs server system.
after this upgrade, in the day time (I mean work hours), sql server service is hanging or blocking randomly. there is no lock,no cpu load. during this blocking period, I can connect to server via remote desktop, whne I checked the disks, I can read data from disk. There is no error or warning in the events before the blocking time. In this period I can not login but if a user has already logged in he/she can run some queries in the begining of the period, but after 2-3 minutes nobody can run any query.
Do you have any idea about the reason or any suggestion to trace?
SQL Server 2000 Spids Blocking Themselves
Oct 19, 2005Hey guys,
I've recently noticed some strange behaviour with sql server 2000 spid's blocking themselves. The spid will appear to be blocked for short periods of time, and then the block will disappear. I'm not sure how this could occur. It started appearing around the same time as I applied SP4.
If anyone could provide any insight into this, it would be greatly appreciated.
Cheers,
-Kilka
Conflict Detection Property
Feb 17, 2008hi;
What is conflict detection in sqldatasource control?
Thanks,mohsen
Torn Page Detection
Sep 14, 2000Anyone working with databases with this option turned on? How does it affect performance?
View 3 Replies View RelatedTorn Page Detection
Jan 7, 2005Hi, We recently had one of our drives (RAID5) replaced because of failure. This has resulted in a torn page being detected on one of our smaller SQL 2000 databases. We have one or two larger SQL databases (30-70GB) on the same drive amongst several others and are now concerned that we may have a problem with these databases also. (The original torn page only came to light when a query was run on one of the tables). Is there anyway I can run a procedure on each of the databases to find out if we have any problems with torn pages? I obviously don't want to restore the databases as this will take a substantial amount of time that we just don't have at the moment. Any ideas that could put our minds at rest would be much appreciated.
Many thanks.
Torn Page Detection
May 22, 2007I want to switch this setting off on all db's - that's easy.
But I presume that means the problem could occur without me knowing for weeks (maybe due to a defective disk driver). So is there a way I can schedule a maintainance task that will check for this problem out of hours? (Maybe by switching the DB option on for a while and then back off? If you switch the option on, does it check the whole database? Or does it just do checks during the actual update?) Hopefully there is a better way than that to do it...
Also, am I right in saying that CHECKSUM is new to 2005?
And what do you guys use: Checksum, Torn Page Detection or None?
Deadlock Detection Problem! Help
Jul 23, 2005Hello faculties,i'm encountering a strange a deadlock problem on my remote serverwhich is used to give application demo to the client. It has happenedthat on one of the databases a deadlock situation is taking place.What is the most detailed way to detect such the cause of such adeadlock to the innermost level of detail, like what statements, storedprocedures and locks are causing the deadlock to occur.Guys! please help me out!Thanks in advanceDebian*** Sent via Developersdex http://www.developersdex.com ***
View 1 Replies View RelatedClustering For Anomaly Detection
Mar 14, 2008Hi,
I have been trying to use the Clustering algorithm for Anomaly Detection, but it has been quite difficult to get correct results for PredictCaseLikelihood.
Using a very large number of clusters helped, but there are other problems.
The algorithm does not take into account all the columns in my nested table, but only uses Exists/Not Exists for the nested table key column. In my case the nested table contains also a column with a count of key attribute.
I am about to abandon the Sql Data Mining.
Does anyone have more insights into tuning the Clustering algorithm for anomaly detection?
Thanks
SQL Server 2008 :: System DMVs Cause Blocking
Mar 25, 2015Queries against DMVs like sys.dm_XXX causing blocking in user databases? I have never read that querying DMVs has caused blocking in user databases but that question recently came up in my environment.
View 5 Replies View RelatedSQL Server 2008 :: Random Blocking In One Table
May 1, 2015We have a SQL Server 2008R2 system that has heavy usage to one specific table. I have tuned basically all I can as far as making sure SQL Statements are using good indexes. From time to time a group of folks will log into Mgt Studio and run SQL Statements like this, leave the query open and once in a while it will cause blocking to other SQL running our online system
The query is like this: select ID,* from tablename with (nolock) where ID like 'MSPRYy%'
The results come back within less than 1 second. However, they leave this window open which is what causes this to be a HEAD BLOCKER and blocks other SQL Statements from running.
SQL 2012 :: Blocking In Report Server TempDB
Sep 21, 2015I am seeing select * from sys.sysprocess where blocked<>0 is always the report server
ReportServer.dbo.GetSessionData;1 is blocked by ReportServer.dbo.WriteLockSession;1
We have different reporting servers using same database.
Is it require to rebuild indexes on report server and report server temp db on daily basis?
T-SQL (SS2K8) :: Non-Printable Character Detection?
Mar 25, 2015The following was found as a solution to detecting non-printable characters in a string. I can find no explanation of how the COLLATE function is used.
how the COLLATE function affects the search string to find the non-printable characters?
patindex('%[^ !-~]%' COLLATE Latin1_General_BIN, titlel) as [Position]
Turning Torn Page Detection ON
May 7, 2007Are there any issues turning this ON?
I have inherited a database which started life under SQL 7 (where Torn page Detection was OFF by default), and I'd like to turn it on. Will this reshuffle all the pages to make room for the extra check-sum, or is that stored in a single block somewhere else such that it can easily be added?
Is the change going to block access for long? (DB = between 2~5GB)
Thanks
Kristen
Change Detection/Rollback Required
Jul 28, 2007Hi
My table’s data is deleted by unknown person.
I can detect some thing about it i.e. user name, time, etc of this event?
Is there any way to rollback changes though logs?
Wishes
Jawad