Let's be careful out there ....
I'm in the process of setting up a new desktop dev machine, and spent the better part of this evening installing tons of software. One of the patches that I hadn't installed yet was SQL Server 2000 Service Pack 3. The reason why I hadn't really thought about it was because none of my SQL Server boxes are exposed to the public Internet. My ISA server is configured to block UDP port 1434 traffic by default.
But there is one SQL Server box that I almost forgot about: my laptop. I tend to connect to all sorts of foreign networks with my laptop. Had I done so with an unpatched SQL Server running on my laptop, I would have brought the Slammer worm back home behind my ISA server firewall. Then all hell would have broken loose.
So the lesson here is: beware of laptops. They can easily subvert the security provided by your network's perimeter defenses. And make sure you patch ALL SQL servers regardless of whether they are behind your firewall or not! [IUnknown.com: John Lam's Weblog on Software Development]
1:13:12 PM 
|
