SQL server security

  • Filter
  • Time
  • Show
Clear All
new posts

    SQL server security

    On Windows shared hosting: I'm concerned about the lack of security on SQL server; just hostname, username and password to login from anywhere.

    Is there any way to tighten this up; eg. Only allow login from localhost or specific IP addresses?

    Thinking about this a bit more, I'd be happy for SQL Server to be locked down to localhost access only; ie only accessible from hosted websites.

    Particularly if MyLittleAdmin in Plesk could be made to work!

    At the moment, MyLittleAdmin gives an error in Chrome-based browsers:

    Mixed Content: The page at 'https://durham.specialservers.com:8443/smb/database/webadmin/id/999?forgery_protection_token=[guid removed]' was loaded over a secure connection, but contains a form that targets an insecure endpoint 'http://mssql.parkerseal.org.uk/silentlogon.aspx'. This endpoint should be made available over a secure connection.