Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

SQL Server Cleartext 'sa' Account 'sa' Password Authentication (deprecated)

High

Synopsis

The remote database is configured with easily guessed (or default) Administrative passwords.

Description

The remote SQL server allows logins with the 'sa' password set to 'sa'.

Solution

Require the SQL server to utilize an encrypted login and ensure that passwords are not trivially guessed.