Improving Web Application Security: Threats and Countermeasures
| Check | Description |
|---|---|
|
| Unnecessary Microsoft Windows services are disabled on the database server. |
|
| All optional services, including Microsoft Search Service, MSSQLServerADHelper, and SQLServerAgent, are disabled if not used by any applications. |
|
| The Microsoft Distributed Transaction Coordinator (MS DTC) is disabled if it is not being used by any applications. |
|
| A least-privileged local/domain account is used to run the various SQL Server services, for example, back up and replication. |
Категории