Skip to main content

SQL server defense

Defending against relay attacks from public role abuse

A 7MinSec customer reported this was an effective way to remove the ability for attackers to play games with stored procedures:

REVOKE EXECUTE ON OBJECT::master.dbo.xp_dirtree FROM public;
REVOKE EXECUTE ON OBJECT::master.dbo.xp_fileexist FROM public;
REVOKE EXECUTE ON OBJECT::master.dbo.xp_cmdshell FROM public;
Last updated on