What are the security measures extended xp_cmdshell by default?
You can find explanations in the permissions section of SQL Server, where it Tells:
Because malicious users sometimes try to upgrade their privileges by using xp_cmdshell, so xp_cmdshell is disabled by default.
You can find a more detailed explanation in the blog, in a brief exclamation of the blog:
In many cases, people enable Xp_cmdshell And provide access to non-sysadmin principal without accepting one or two operations on the system, the user using it to execute any arbitrary order, and in some cases, its privilege to be cisad Not even or even the box administrator increases effectively - obviously a situation which is less than desirable Xp_cmdshell is really difficult to control effectively, and even after auditing its use, the attacker For some time, abuse of its power is not allowed to be allowed until the mark of this abuse is found, and the loss can be done at that time.
Comments
Post a Comment