October 25, 2012 at 8:19 am
I keep finding mentions of an article by Jeff Moden discussing 2-3 options on how to use xp_cmdshell safely, but I can't find the actual article itself. I feel like it should be an obvious find, but I'm having trouble finding it.
He mentions he's writing it on this thread from about a year ago.
http://beyondrelational.com/modules/1/justlearned/0/tips/8801/execute-bat-file-from-sql-server.aspx
October 25, 2012 at 10:49 am
Gabriel P (10/25/2012)
I keep finding mentions of an article by Jeff Moden discussing 2-3 options on how to use xp_cmdshell safely, but I can't find the actual article itself. I feel like it should be an obvious find, but I'm having trouble finding it.He mentions he's writing it on this thread from about a year ago.
http://beyondrelational.com/modules/1/justlearned/0/tips/8801/execute-bat-file-from-sql-server.aspx
I actually haven't written the article, yet.
I can tell you that the first step to take is a lockdown of the server. No users or application logins can have SA privs anywhere on the server. Only authorized DBAs should have SA privs.
--Jeff Moden
Change is inevitable... Change for the better is not.
October 25, 2012 at 1:13 pm
Thanks Jeff. I'll keep an eye out for it
Viewing 3 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply