server| Security | Raiders
1, install the latest service Pack 4,system Administrators role preferably not more than two, do not use the SA account, configure it with a super complex password
2, use the Microsoft Baseline Security Analyzer (MBSA) to evaluate server security. MBSA runs on Windows 2000 and Windows XP systems and can scan the following products to discover common system configuration errors: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, I Nternet Information Server (IIS), SQL Server, Internet Explorer, and Office. MBSA 1.2 can also scan the following products to find out which security updates are missing: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, IIS, SQL Server, IE, Exchange Server, Windows Media Player, Microsoft Data Access components (MDAC), MSXML, Microsoft Virtual Machine, Commerce server, Content Management Server, BizTalk server, Host Integration Server, and Office. Download Address: http://www.microsoft.com/china/technet/security/tools/mbsahome.mspx
3. Use Windows authentication mode as much as possible. Steps:--> Expand the server group--> right click on the server, and then click Properties--> in the Security tab authentication, click Windows only.
4, hide SQL Server, change the default 1433 port
Right-click the properties of the TCP/IP protocol in the general-network configuration, choose to hide the SQL Server instance, and change the default 1433 port