|
sql
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Error logs enormous. Can I delete or save elsewhere?
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. The total size is over 6gb and growing because of invalid logins from hackers. This is filling up my small C drive. Don't want to turn off "Failed Logins only" in Server Properties > Login auditing because I want to keep track of the hackers. Couple of questions: 1 Can I delete error log 5 and 6 without causing problems? 2 Can I change the settings so that the error log files are saved on my D: drive? 3 If doing 2 means moving the whole of SQL server from my C: to my D: drive, how do I do that? Your help would be much appreciated. Thanking you in anticipation. Roger > Don't want to turn off "Failed Logins only" in Server Properties > Login Do you have a need to expose your SQL Server port to the internet? If not, > auditing because I want to keep track of the hackers. consider a firewall. > 1 Can I delete error log 5 and 6 without causing problems? The historical error log files are needed only for your analysis. You can delete the ones you don't need. > 2 Can I change the settings so that the error log files are saved on my The error log location is specified via the '-e' startup parameter. > D: > drive? Assuming SQL 2005, one method to change this is with SQL Server Configuration Manager in the Configuration Tools group. Choose the Advanced tab under the SQL Server properties. > No need to move anything.> 3 If doing 2 means moving the whole of SQL server from my C: to my D: > drive, how do I do that? Show quoteHide quote "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... >I am referring to the 6 error logs in: > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. > > The total size is over 6gb and growing because of invalid logins from > hackers. This is filling up my small C drive. > > Don't want to turn off "Failed Logins only" in Server Properties > Login > auditing because I want to keep track of the hackers. > > Couple of questions: > > 1 Can I delete error log 5 and 6 without causing problems? > > 2 Can I change the settings so that the error log files are saved on my > D: > drive? > > 3 If doing 2 means moving the whole of SQL server from my C: to my D: > drive, how do I do that? > > Your help would be much appreciated. > > Thanking you in anticipation. > > Roger > > > > Thanks for your reply, Dan.
This SQL Server computer only needs to be accessed by the web server computer that uses the databases. How do I set up the Windows Firewall to allow only the web server to access the SQL Server port? Show quoteHide quote "Dan Guzman" wrote: > > Don't want to turn off "Failed Logins only" in Server Properties > Login > > auditing because I want to keep track of the hackers. > > Do you have a need to expose your SQL Server port to the internet? If not, > consider a firewall. > > > 1 Can I delete error log 5 and 6 without causing problems? > > The historical error log files are needed only for your analysis. You can > delete the ones you don't need. > > > 2 Can I change the settings so that the error log files are saved on my > > D: > > drive? > > The error log location is specified via the '-e' startup parameter. > Assuming SQL 2005, one method to change this is with SQL Server > Configuration Manager in the Configuration Tools group. Choose the Advanced > tab under the SQL Server properties. > > > > > 3 If doing 2 means moving the whole of SQL server from my C: to my D: > > drive, how do I do that? > > No need to move anything. > > -- > Hope this helps. > > Dan Guzman > SQL Server MVP > http://weblogs.sqlteam.com/dang/ > > "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message > news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... > >I am referring to the 6 error logs in: > > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. > > > > The total size is over 6gb and growing because of invalid logins from > > hackers. This is filling up my small C drive. > > > > Don't want to turn off "Failed Logins only" in Server Properties > Login > > auditing because I want to keep track of the hackers. > > > > Couple of questions: > > > > 1 Can I delete error log 5 and 6 without causing problems? > > > > 2 Can I change the settings so that the error log files are saved on my > > D: > > drive? > > > > 3 If doing 2 means moving the whole of SQL server from my C: to my D: > > drive, how do I do that? > > > > Your help would be much appreciated. > > > > Thanking you in anticipation. > > > > Roger > > > > > > > > > > > How do I set up the Windows Firewall to allow only the web server to Check out > access > the SQL Server port? http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx for a discussion an links to related articles. Show quoteHide quote "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... > Thanks for your reply, Dan. > > This SQL Server computer only needs to be accessed by the web server > computer that uses the databases. > > How do I set up the Windows Firewall to allow only the web server to > access > the SQL Server port? > > "Dan Guzman" wrote: > >> > Don't want to turn off "Failed Logins only" in Server Properties > >> > Login >> > auditing because I want to keep track of the hackers. >> >> Do you have a need to expose your SQL Server port to the internet? If >> not, >> consider a firewall. >> >> > 1 Can I delete error log 5 and 6 without causing problems? >> >> The historical error log files are needed only for your analysis. You >> can >> delete the ones you don't need. >> >> > 2 Can I change the settings so that the error log files are saved on >> > my >> > D: >> > drive? >> >> The error log location is specified via the '-e' startup parameter. >> Assuming SQL 2005, one method to change this is with SQL Server >> Configuration Manager in the Configuration Tools group. Choose the >> Advanced >> tab under the SQL Server properties. >> >> > >> > 3 If doing 2 means moving the whole of SQL server from my C: to my D: >> > drive, how do I do that? >> >> No need to move anything. >> >> -- >> Hope this helps. >> >> Dan Guzman >> SQL Server MVP >> http://weblogs.sqlteam.com/dang/ >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> message >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... >> >I am referring to the 6 error logs in: >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. >> > >> > The total size is over 6gb and growing because of invalid logins from >> > hackers. This is filling up my small C drive. >> > >> > Don't want to turn off "Failed Logins only" in Server Properties > >> > Login >> > auditing because I want to keep track of the hackers. >> > >> > Couple of questions: >> > >> > 1 Can I delete error log 5 and 6 without causing problems? >> > >> > 2 Can I change the settings so that the error log files are saved on >> > my >> > D: >> > drive? >> > >> > 3 If doing 2 means moving the whole of SQL server from my C: to my D: >> > drive, how do I do that? >> > >> > Your help would be much appreciated. >> > >> > Thanking you in anticipation. >> > >> > Roger >> > >> > >> > >> > >> >> I've looked at the link you recommmend and would like some help in setting up
the Windows Firewall, please. The database server is only running one instance of SQL Server 2005 Express Edition with six databases configured. In Configuration Manager > Protocols for SQLEXPRESS > TCP/IP Properties > IPAll > TCP Port = 1433. This server is only accessed by one web server which has "IPaddress(of the database server)\SQLEXPRESS" set up in its ODBC Data Source Amdinistrator > DSN configuration, one for each of the six databases on the database server. How to I set up the Windows Firewall on the database server to only make my web server the one exception? Thanking you in anticipation. Roger Show quoteHide quote "Dan Guzman" wrote: > > How do I set up the Windows Firewall to allow only the web server to > > access > > the SQL Server port? > > Check out > http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx > for a discussion an links to related articles. > > -- > Hope this helps. > > Dan Guzman > SQL Server MVP > http://weblogs.sqlteam.com/dang/ > > "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message > news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... > > Thanks for your reply, Dan. > > > > This SQL Server computer only needs to be accessed by the web server > > computer that uses the databases. > > > > How do I set up the Windows Firewall to allow only the web server to > > access > > the SQL Server port? > > > > "Dan Guzman" wrote: > > > >> > Don't want to turn off "Failed Logins only" in Server Properties > > >> > Login > >> > auditing because I want to keep track of the hackers. > >> > >> Do you have a need to expose your SQL Server port to the internet? If > >> not, > >> consider a firewall. > >> > >> > 1 Can I delete error log 5 and 6 without causing problems? > >> > >> The historical error log files are needed only for your analysis. You > >> can > >> delete the ones you don't need. > >> > >> > 2 Can I change the settings so that the error log files are saved on > >> > my > >> > D: > >> > drive? > >> > >> The error log location is specified via the '-e' startup parameter. > >> Assuming SQL 2005, one method to change this is with SQL Server > >> Configuration Manager in the Configuration Tools group. Choose the > >> Advanced > >> tab under the SQL Server properties. > >> > >> > > >> > 3 If doing 2 means moving the whole of SQL server from my C: to my D: > >> > drive, how do I do that? > >> > >> No need to move anything. > >> > >> -- > >> Hope this helps. > >> > >> Dan Guzman > >> SQL Server MVP > >> http://weblogs.sqlteam.com/dang/ > >> > >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> message > >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... > >> >I am referring to the 6 error logs in: > >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. > >> > > >> > The total size is over 6gb and growing because of invalid logins from > >> > hackers. This is filling up my small C drive. > >> > > >> > Don't want to turn off "Failed Logins only" in Server Properties > > >> > Login > >> > auditing because I want to keep track of the hackers. > >> > > >> > Couple of questions: > >> > > >> > 1 Can I delete error log 5 and 6 without causing problems? > >> > > >> > 2 Can I change the settings so that the error log files are saved on > >> > my > >> > D: > >> > drive? > >> > > >> > 3 If doing 2 means moving the whole of SQL server from my C: to my D: > >> > drive, how do I do that? > >> > > >> > Your help would be much appreciated. > >> > > >> > Thanking you in anticipation. > >> > > >> > Roger > >> > > >> > > >> > > >> > > >> > >> > > > How to I set up the Windows Firewall on the database server to only make What OS are you running?> my > web server the one exception? Show quoteHide quote "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message news:CE0E0CC2-C5DA-405A-8728-5948F505B00D@microsoft.com... > I've looked at the link you recommmend and would like some help in setting > up > the Windows Firewall, please. > > The database server is only running one instance of SQL Server 2005 > Express > Edition with six databases configured. > > In Configuration Manager > Protocols for SQLEXPRESS > TCP/IP Properties > > IPAll > TCP Port = 1433. > > This server is only accessed by one web server which has "IPaddress(of the > database server)\SQLEXPRESS" set up in its ODBC Data Source Amdinistrator > > > DSN configuration, one for each of the six databases on the database > server. > > How to I set up the Windows Firewall on the database server to only make > my > web server the one exception? > > Thanking you in anticipation. > > Roger > > "Dan Guzman" wrote: > >> > How do I set up the Windows Firewall to allow only the web server to >> > access >> > the SQL Server port? >> >> Check out >> http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx >> for a discussion an links to related articles. >> >> -- >> Hope this helps. >> >> Dan Guzman >> SQL Server MVP >> http://weblogs.sqlteam.com/dang/ >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> message >> news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... >> > Thanks for your reply, Dan. >> > >> > This SQL Server computer only needs to be accessed by the web server >> > computer that uses the databases. >> > >> > How do I set up the Windows Firewall to allow only the web server to >> > access >> > the SQL Server port? >> > >> > "Dan Guzman" wrote: >> > >> >> > Don't want to turn off "Failed Logins only" in Server Properties > >> >> > Login >> >> > auditing because I want to keep track of the hackers. >> >> >> >> Do you have a need to expose your SQL Server port to the internet? If >> >> not, >> >> consider a firewall. >> >> >> >> > 1 Can I delete error log 5 and 6 without causing problems? >> >> >> >> The historical error log files are needed only for your analysis. You >> >> can >> >> delete the ones you don't need. >> >> >> >> > 2 Can I change the settings so that the error log files are saved >> >> > on >> >> > my >> >> > D: >> >> > drive? >> >> >> >> The error log location is specified via the '-e' startup parameter. >> >> Assuming SQL 2005, one method to change this is with SQL Server >> >> Configuration Manager in the Configuration Tools group. Choose the >> >> Advanced >> >> tab under the SQL Server properties. >> >> >> >> > >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to my >> >> > D: >> >> > drive, how do I do that? >> >> >> >> No need to move anything. >> >> >> >> -- >> >> Hope this helps. >> >> >> >> Dan Guzman >> >> SQL Server MVP >> >> http://weblogs.sqlteam.com/dang/ >> >> >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> >> message >> >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... >> >> >I am referring to the 6 error logs in: >> >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. >> >> > >> >> > The total size is over 6gb and growing because of invalid logins >> >> > from >> >> > hackers. This is filling up my small C drive. >> >> > >> >> > Don't want to turn off "Failed Logins only" in Server Properties > >> >> > Login >> >> > auditing because I want to keep track of the hackers. >> >> > >> >> > Couple of questions: >> >> > >> >> > 1 Can I delete error log 5 and 6 without causing problems? >> >> > >> >> > 2 Can I change the settings so that the error log files are saved >> >> > on >> >> > my >> >> > D: >> >> > drive? >> >> > >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to my >> >> > D: >> >> > drive, how do I do that? >> >> > >> >> > Your help would be much appreciated. >> >> > >> >> > Thanking you in anticipation. >> >> > >> >> > Roger >> >> > >> >> > >> >> > >> >> > >> >> >> >> >> >> Windows 2003 SP2.
Show quoteHide quote "Dan Guzman" wrote: > > How to I set up the Windows Firewall on the database server to only make > > my > > web server the one exception? > > What OS are you running? > > -- > Hope this helps. > > Dan Guzman > SQL Server MVP > http://weblogs.sqlteam.com/dang/ > > "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message > news:CE0E0CC2-C5DA-405A-8728-5948F505B00D@microsoft.com... > > I've looked at the link you recommmend and would like some help in setting > > up > > the Windows Firewall, please. > > > > The database server is only running one instance of SQL Server 2005 > > Express > > Edition with six databases configured. > > > > In Configuration Manager > Protocols for SQLEXPRESS > TCP/IP Properties > > > IPAll > TCP Port = 1433. > > > > This server is only accessed by one web server which has "IPaddress(of the > > database server)\SQLEXPRESS" set up in its ODBC Data Source Amdinistrator > > > > > DSN configuration, one for each of the six databases on the database > > server. > > > > How to I set up the Windows Firewall on the database server to only make > > my > > web server the one exception? > > > > Thanking you in anticipation. > > > > Roger > > > > "Dan Guzman" wrote: > > > >> > How do I set up the Windows Firewall to allow only the web server to > >> > access > >> > the SQL Server port? > >> > >> Check out > >> http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx > >> for a discussion an links to related articles. > >> > >> -- > >> Hope this helps. > >> > >> Dan Guzman > >> SQL Server MVP > >> http://weblogs.sqlteam.com/dang/ > >> > >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> message > >> news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... > >> > Thanks for your reply, Dan. > >> > > >> > This SQL Server computer only needs to be accessed by the web server > >> > computer that uses the databases. > >> > > >> > How do I set up the Windows Firewall to allow only the web server to > >> > access > >> > the SQL Server port? > >> > > >> > "Dan Guzman" wrote: > >> > > >> >> > Don't want to turn off "Failed Logins only" in Server Properties > > >> >> > Login > >> >> > auditing because I want to keep track of the hackers. > >> >> > >> >> Do you have a need to expose your SQL Server port to the internet? If > >> >> not, > >> >> consider a firewall. > >> >> > >> >> > 1 Can I delete error log 5 and 6 without causing problems? > >> >> > >> >> The historical error log files are needed only for your analysis. You > >> >> can > >> >> delete the ones you don't need. > >> >> > >> >> > 2 Can I change the settings so that the error log files are saved > >> >> > on > >> >> > my > >> >> > D: > >> >> > drive? > >> >> > >> >> The error log location is specified via the '-e' startup parameter. > >> >> Assuming SQL 2005, one method to change this is with SQL Server > >> >> Configuration Manager in the Configuration Tools group. Choose the > >> >> Advanced > >> >> tab under the SQL Server properties. > >> >> > >> >> > > >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to my > >> >> > D: > >> >> > drive, how do I do that? > >> >> > >> >> No need to move anything. > >> >> > >> >> -- > >> >> Hope this helps. > >> >> > >> >> Dan Guzman > >> >> SQL Server MVP > >> >> http://weblogs.sqlteam.com/dang/ > >> >> > >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> >> message > >> >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... > >> >> >I am referring to the 6 error logs in: > >> >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. > >> >> > > >> >> > The total size is over 6gb and growing because of invalid logins > >> >> > from > >> >> > hackers. This is filling up my small C drive. > >> >> > > >> >> > Don't want to turn off "Failed Logins only" in Server Properties > > >> >> > Login > >> >> > auditing because I want to keep track of the hackers. > >> >> > > >> >> > Couple of questions: > >> >> > > >> >> > 1 Can I delete error log 5 and 6 without causing problems? > >> >> > > >> >> > 2 Can I change the settings so that the error log files are saved > >> >> > on > >> >> > my > >> >> > D: > >> >> > drive? > >> >> > > >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to my > >> >> > D: > >> >> > drive, how do I do that? > >> >> > > >> >> > Your help would be much appreciated. > >> >> > > >> >> > Thanking you in anticipation. > >> >> > > >> >> > Roger > >> >> > > >> >> > > >> >> > > >> >> > > >> >> > >> >> > >> > >> > > > Windows 2003 SP2. After adding port 1433 as an firewall exception, click the scope button and specify the web server interface ip address in the custom list text box. This will ensure only the web server can access the SQL port. >> > This server is only accessed by one web server which has "IPaddress(of Since your named instance is listening on port 1433, I think you should be >> > the >> > database server)\SQLEXPRESS" set up in its ODBC Data Source >> > Amdinistrator able to remove "\SQLEXPRESS" from the web server connection string. This way, the web server won't need to access the SQL Browser service via UDP 1434 to determine the port of the named instance. If you don't remove the connection string instance name, you'll need to open UDP 1434 as a port exception and also make the same scope exception for the web server as you did for TCP 1433. Show quoteHide quote "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message news:4202B7AB-B87C-438A-BE08-E2302A75D670@microsoft.com... > Windows 2003 SP2. > > "Dan Guzman" wrote: > >> > How to I set up the Windows Firewall on the database server to only >> > make >> > my >> > web server the one exception? >> >> What OS are you running? >> >> -- >> Hope this helps. >> >> Dan Guzman >> SQL Server MVP >> http://weblogs.sqlteam.com/dang/ >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> message >> news:CE0E0CC2-C5DA-405A-8728-5948F505B00D@microsoft.com... >> > I've looked at the link you recommmend and would like some help in >> > setting >> > up >> > the Windows Firewall, please. >> > >> > The database server is only running one instance of SQL Server 2005 >> > Express >> > Edition with six databases configured. >> > >> > In Configuration Manager > Protocols for SQLEXPRESS > TCP/IP Properties >> > > >> > IPAll > TCP Port = 1433. >> > >> > This server is only accessed by one web server which has "IPaddress(of >> > the >> > database server)\SQLEXPRESS" set up in its ODBC Data Source >> > Amdinistrator >> > > >> > DSN configuration, one for each of the six databases on the database >> > server. >> > >> > How to I set up the Windows Firewall on the database server to only >> > make >> > my >> > web server the one exception? >> > >> > Thanking you in anticipation. >> > >> > Roger >> > >> > "Dan Guzman" wrote: >> > >> >> > How do I set up the Windows Firewall to allow only the web server to >> >> > access >> >> > the SQL Server port? >> >> >> >> Check out >> >> http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx >> >> for a discussion an links to related articles. >> >> >> >> -- >> >> Hope this helps. >> >> >> >> Dan Guzman >> >> SQL Server MVP >> >> http://weblogs.sqlteam.com/dang/ >> >> >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> >> message >> >> news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... >> >> > Thanks for your reply, Dan. >> >> > >> >> > This SQL Server computer only needs to be accessed by the web server >> >> > computer that uses the databases. >> >> > >> >> > How do I set up the Windows Firewall to allow only the web server to >> >> > access >> >> > the SQL Server port? >> >> > >> >> > "Dan Guzman" wrote: >> >> > >> >> >> > Don't want to turn off "Failed Logins only" in Server Properties >> >> >> > > >> >> >> > Login >> >> >> > auditing because I want to keep track of the hackers. >> >> >> >> >> >> Do you have a need to expose your SQL Server port to the internet? >> >> >> If >> >> >> not, >> >> >> consider a firewall. >> >> >> >> >> >> > 1 Can I delete error log 5 and 6 without causing problems? >> >> >> >> >> >> The historical error log files are needed only for your analysis. >> >> >> You >> >> >> can >> >> >> delete the ones you don't need. >> >> >> >> >> >> > 2 Can I change the settings so that the error log files are >> >> >> > saved >> >> >> > on >> >> >> > my >> >> >> > D: >> >> >> > drive? >> >> >> >> >> >> The error log location is specified via the '-e' startup parameter. >> >> >> Assuming SQL 2005, one method to change this is with SQL Server >> >> >> Configuration Manager in the Configuration Tools group. Choose the >> >> >> Advanced >> >> >> tab under the SQL Server properties. >> >> >> >> >> >> > >> >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to >> >> >> > my >> >> >> > D: >> >> >> > drive, how do I do that? >> >> >> >> >> >> No need to move anything. >> >> >> >> >> >> -- >> >> >> Hope this helps. >> >> >> >> >> >> Dan Guzman >> >> >> SQL Server MVP >> >> >> http://weblogs.sqlteam.com/dang/ >> >> >> >> >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in >> >> >> message >> >> >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... >> >> >> >I am referring to the 6 error logs in: >> >> >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. >> >> >> > >> >> >> > The total size is over 6gb and growing because of invalid logins >> >> >> > from >> >> >> > hackers. This is filling up my small C drive. >> >> >> > >> >> >> > Don't want to turn off "Failed Logins only" in Server Properties >> >> >> > > >> >> >> > Login >> >> >> > auditing because I want to keep track of the hackers. >> >> >> > >> >> >> > Couple of questions: >> >> >> > >> >> >> > 1 Can I delete error log 5 and 6 without causing problems? >> >> >> > >> >> >> > 2 Can I change the settings so that the error log files are >> >> >> > saved >> >> >> > on >> >> >> > my >> >> >> > D: >> >> >> > drive? >> >> >> > >> >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to >> >> >> > my >> >> >> > D: >> >> >> > drive, how do I do that? >> >> >> > >> >> >> > Your help would be much appreciated. >> >> >> > >> >> >> > Thanking you in anticipation. >> >> >> > >> >> >> > Roger >> >> >> > >> >> >> > >> >> >> > >> >> >> > >> >> >> >> >> >> >> >> >> >> >> >> Fixed.
Many thanks, Dan. Roger Show quoteHide quote "Dan Guzman" wrote: > > Windows 2003 SP2. > > After adding port 1433 as an firewall exception, click the scope button and > specify the web server interface ip address in the custom list text box. > This will ensure only the web server can access the SQL port. > > >> > This server is only accessed by one web server which has "IPaddress(of > >> > the > >> > database server)\SQLEXPRESS" set up in its ODBC Data Source > >> > Amdinistrator > > Since your named instance is listening on port 1433, I think you should be > able to remove "\SQLEXPRESS" from the web server connection string. This > way, the web server won't need to access the SQL Browser service via UDP > 1434 to determine the port of the named instance. If you don't remove the > connection string instance name, you'll need to open UDP 1434 as a port > exception and also make the same scope exception for the web server as you > did for TCP 1433. > > -- > Hope this helps. > > Dan Guzman > SQL Server MVP > http://weblogs.sqlteam.com/dang/ > > "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in message > news:4202B7AB-B87C-438A-BE08-E2302A75D670@microsoft.com... > > Windows 2003 SP2. > > > > "Dan Guzman" wrote: > > > >> > How to I set up the Windows Firewall on the database server to only > >> > make > >> > my > >> > web server the one exception? > >> > >> What OS are you running? > >> > >> -- > >> Hope this helps. > >> > >> Dan Guzman > >> SQL Server MVP > >> http://weblogs.sqlteam.com/dang/ > >> > >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> message > >> news:CE0E0CC2-C5DA-405A-8728-5948F505B00D@microsoft.com... > >> > I've looked at the link you recommmend and would like some help in > >> > setting > >> > up > >> > the Windows Firewall, please. > >> > > >> > The database server is only running one instance of SQL Server 2005 > >> > Express > >> > Edition with six databases configured. > >> > > >> > In Configuration Manager > Protocols for SQLEXPRESS > TCP/IP Properties > >> > > > >> > IPAll > TCP Port = 1433. > >> > > >> > This server is only accessed by one web server which has "IPaddress(of > >> > the > >> > database server)\SQLEXPRESS" set up in its ODBC Data Source > >> > Amdinistrator > >> > > > >> > DSN configuration, one for each of the six databases on the database > >> > server. > >> > > >> > How to I set up the Windows Firewall on the database server to only > >> > make > >> > my > >> > web server the one exception? > >> > > >> > Thanking you in anticipation. > >> > > >> > Roger > >> > > >> > "Dan Guzman" wrote: > >> > > >> >> > How do I set up the Windows Firewall to allow only the web server to > >> >> > access > >> >> > the SQL Server port? > >> >> > >> >> Check out > >> >> http://blogs.msdn.com/sqlsecurity/archive/2008/07/01/sql-server-and-the-windows-server-2008-firewall.aspx > >> >> for a discussion an links to related articles. > >> >> > >> >> -- > >> >> Hope this helps. > >> >> > >> >> Dan Guzman > >> >> SQL Server MVP > >> >> http://weblogs.sqlteam.com/dang/ > >> >> > >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> >> message > >> >> news:803FD55D-5506-43D8-9C53-BC7FA998928E@microsoft.com... > >> >> > Thanks for your reply, Dan. > >> >> > > >> >> > This SQL Server computer only needs to be accessed by the web server > >> >> > computer that uses the databases. > >> >> > > >> >> > How do I set up the Windows Firewall to allow only the web server to > >> >> > access > >> >> > the SQL Server port? > >> >> > > >> >> > "Dan Guzman" wrote: > >> >> > > >> >> >> > Don't want to turn off "Failed Logins only" in Server Properties > >> >> >> > > > >> >> >> > Login > >> >> >> > auditing because I want to keep track of the hackers. > >> >> >> > >> >> >> Do you have a need to expose your SQL Server port to the internet? > >> >> >> If > >> >> >> not, > >> >> >> consider a firewall. > >> >> >> > >> >> >> > 1 Can I delete error log 5 and 6 without causing problems? > >> >> >> > >> >> >> The historical error log files are needed only for your analysis. > >> >> >> You > >> >> >> can > >> >> >> delete the ones you don't need. > >> >> >> > >> >> >> > 2 Can I change the settings so that the error log files are > >> >> >> > saved > >> >> >> > on > >> >> >> > my > >> >> >> > D: > >> >> >> > drive? > >> >> >> > >> >> >> The error log location is specified via the '-e' startup parameter. > >> >> >> Assuming SQL 2005, one method to change this is with SQL Server > >> >> >> Configuration Manager in the Configuration Tools group. Choose the > >> >> >> Advanced > >> >> >> tab under the SQL Server properties. > >> >> >> > >> >> >> > > >> >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to > >> >> >> > my > >> >> >> > D: > >> >> >> > drive, how do I do that? > >> >> >> > >> >> >> No need to move anything. > >> >> >> > >> >> >> -- > >> >> >> Hope this helps. > >> >> >> > >> >> >> Dan Guzman > >> >> >> SQL Server MVP > >> >> >> http://weblogs.sqlteam.com/dang/ > >> >> >> > >> >> >> "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > >> >> >> message > >> >> >> news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... > >> >> >> >I am referring to the 6 error logs in: > >> >> >> > C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. > >> >> >> > > >> >> >> > The total size is over 6gb and growing because of invalid logins > >> >> >> > from > >> >> >> > hackers. This is filling up my small C drive. > >> >> >> > > >> >> >> > Don't want to turn off "Failed Logins only" in Server Properties > >> >> >> > > > >> >> >> > Login > >> >> >> > auditing because I want to keep track of the hackers. > >> >> >> > > >> >> >> > Couple of questions: > >> >> >> > > >> >> >> > 1 Can I delete error log 5 and 6 without causing problems? > >> >> >> > > >> >> >> > 2 Can I change the settings so that the error log files are > >> >> >> > saved > >> >> >> > on > >> >> >> > my > >> >> >> > D: > >> >> >> > drive? > >> >> >> > > >> >> >> > 3 If doing 2 means moving the whole of SQL server from my C: to > >> >> >> > my > >> >> >> > D: > >> >> >> > drive, how do I do that? > >> >> >> > > >> >> >> > Your help would be much appreciated. > >> >> >> > > >> >> >> > Thanking you in anticipation. > >> >> >> > > >> >> >> > Roger > >> >> >> > > >> >> >> > > >> >> >> > > >> >> >> > > >> >> >> > >> >> >> > >> >> > >> >> > >> > >> > > .... and also check out sp_cycle_errorlog, which you can schedule if
you wish... -- Show quoteHide quoteTibor Karaszi, SQL Server MVP http://www.karaszi.com/sqlserver/default.asp http://sqlblog.com/blogs/tibor_karaszi "Dan Guzman" <guzmanda@nospam-online.sbcglobal.net> wrote in message news:eHkbjnUVJHA.4812@TK2MSFTNGP05.phx.gbl... >> Don't want to turn off "Failed Logins only" in Server Properties > >> Login >> auditing because I want to keep track of the hackers. > > Do you have a need to expose your SQL Server port to the internet? > If not, consider a firewall. > >> 1 Can I delete error log 5 and 6 without causing problems? > > The historical error log files are needed only for your analysis. > You can delete the ones you don't need. > >> 2 Can I change the settings so that the error log files are saved >> on my D: >> drive? > > The error log location is specified via the '-e' startup parameter. > Assuming SQL 2005, one method to change this is with SQL Server > Configuration Manager in the Configuration Tools group. Choose the > Advanced tab under the SQL Server properties. > >> >> 3 If doing 2 means moving the whole of SQL server from my C: to my >> D: >> drive, how do I do that? > > No need to move anything. > > -- > Hope this helps. > > Dan Guzman > SQL Server MVP > http://weblogs.sqlteam.com/dang/ > > "Roger Withnell" <RogerWithn***@discussions.microsoft.com> wrote in > message news:55DD2580-0ABF-4EAF-8D31-6C3F9B6FF6C6@microsoft.com... >>I am referring to the 6 error logs in: >> C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\LOG. >> >> The total size is over 6gb and growing because of invalid logins >> from >> hackers. This is filling up my small C drive. >> >> Don't want to turn off "Failed Logins only" in Server Properties > >> Login >> auditing because I want to keep track of the hackers. >> >> Couple of questions: >> >> 1 Can I delete error log 5 and 6 without causing problems? >> >> 2 Can I change the settings so that the error log files are saved >> on my D: >> drive? >> >> 3 If doing 2 means moving the whole of SQL server from my C: to my >> D: >> drive, how do I do that? >> >> Your help would be much appreciated. >> >> Thanking you in anticipation. >> >> Roger >> >> >> >> >  
Other interesting topics
MS Access, ODBC, SQL 2005, delays before data appears
Script to delete records from a table older than N number of days. in full recovery mode but log keeps self-truncating Server Disk Space Max server memory being ignored Security Question how to store decimals in tables Cumulative package 2 for SQL 2008 Hebrew + Arabic collation Maintenence Cleanup Task does not delete backup files |
|||||||||||||||||||||||
