Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

who (or what) changed the sa password?!?!

Status
Not open for further replies.

dragonwell

Programmer
Oct 21, 2002
863
US
login failed for user 'sa'.
Ok... it was the same for two years. So I log in as machine administrator and change sa's password back to normal and everything's fine.

Question: Can the password for the sa account be changed in a way other than a user with administrative priviledges actually going in changing it or it being actually changed while logged in as sa?

That is, could this happen through some bug or is it absolutely a case of an actual person chnaging it maliciously/accidentally?

 
Any body with SysAdmin Role priveledge has the authority to change the sa password.

Bug, I dont think so. Must be somebody double click on the sa account the reset the password. Because you need to type 2 times to ensure the new password.
 
This is definately a security breach. I've seen it happen in a few different instances now. It seems to coincide with a service called "Serv-U" on the machines running SQL Server.

Greetings,
Dragonwell
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top