There is no jdbc add-on available at this point. No one has ever requested such a thing.
I think the concern is not the exposure in the file or the interface as those both should be protected using NTFS permissions, and locked down servers. I think the concern is that the password is transmitted plain text (as far as I know). However I think that if someone is sniffing your internal LAN them getting a database password is the least of your concerns. Jason Passow Mississippi Welders Supply [EMAIL PROTECTED] ph: (507) 494-5178 fax: (507) 454-8104 "If you do everything right, nobody will realize you've done anything at all." Michael Shook wrote: SQL Server 2005 Where are you worried about exposure? Yes, there is some risk of a person standing at the Servers Alive server opening the files and getting the password. We answered this question 2 ways: One, the Servers Alive server itself is no more or less secure than the Database Server (physically as well as electronically). Two, we created a read only SQL user just for data lookup. Since we have to use ODBC in the normal course of business, we felt that these 2 points brought the security up to our comfort level. A hacker might possibly be able to get a copy of our data, but he wouldn't be able to modify it. The data we keep is of low enough value to the outside world that this solution is deemed acceptable. On a side note, we have started to look into JDBC connections. Does anyone have any input on those? Are they any more secure? Is there a JDBC lookup COM Addon available? Michael D. Shook Systems Analyst - Data Integration Saddle Creek Corporation [EMAIL PROTECTED] (mailto:[EMAIL PROTECTED]) 863 668 4477 (work) 863 665 1261 (fax) www.saddlecrk.com (http://www.saddlecrk.com/) -------------------------------------------------------------------------------- From: Servers Alive Discussion List [mailto:[email protected] (mailto:[email protected])] On Behalf Of Ferrell, Jim Sent: Wednesday, April 11, 2007 9:41 AM To: Servers Alive Discussion List Subject: RE: [SA-list] SQL Server 2005 On a side note, we abandoned using ODBC checks against databases because it exposes user ID and password. Jim Ferrell EDS - Allison Transmission 4700 W 10th St Mail Code 462-470-H04 Indianapolis, IN 4622 phone: 317-242-0034 (8-252) mail: [EMAIL PROTECTED] (mailto:[EMAIL PROTECTED]) cell: 317-716-4541 -------------------------------------------------------------------------------- From: Servers Alive Discussion List [mailto:[email protected] (mailto:[email protected])] On Behalf Of Jason Passow Sent: Wednesday, April 11, 2007 9:30 AM To: Servers Alive Discussion List Subject: Re: [SA-list] SQL Server 2005 Yes it is. You can run any SQL query against the server and receive a response using the ODBC check. Jason Passow Mississippi Welders Supply [EMAIL PROTECTED] ph: (507) 494-5178 fax: (507) 454-8104 "If you do everything right, nobody will realize you've done anything at all." Krüger Philipp wrote: Hello List, do you know wether it is possible to check a database of a MS SQL Server 2005 with Server Alives 6 ??? I tried but got errors. Thanks in advance, Philipp _______________________________________ Philipp Krüger System- / Netzwerkadministrator German Heart Institute Berlin Services GmbH -am Deutschen Herzzentrum Berlin Phone 0049 / 30 4593 1488 Fax 0049 / 30 4593 3051 Mail [EMAIL PROTECTED] (mailto:[EMAIL PROTECTED]) PGP 0xab12c457 _______________________________________ To unsubscribe send a message with UNSUBSCRIBE as subject to [email protected] (mailto:[email protected]) If you use auto-responders (like out-of-the-office messages), then make sure that they are not send to the list nor to the individual members of the list that send a message. Doing this will get you removed from the list. To unsubscribe send a message with UNSUBSCRIBE as subject to [email protected] (mailto:[email protected]) If you use auto-responders (like out-of-the-office messages), then make sure that they are not send to the list nor to the individual members of the list that send a message. Doing this will get you removed from the list. To unsubscribe send a message with UNSUBSCRIBE as subject to [email protected] (mailto:[email protected]) If you use auto-responders (like out-of-the-office messages), then make sure that they are not send to the list nor to the individual members of the list that send a message. Doing this will get you removed from the list. -------------------------------------- The information contained in this message is intended only for the use of the addressee. If the reader of this message is not the intended recipient or agent of the intended recipient, you are hereby notified that any dissemination, distribution, or copying of the message is strictly prohibited. To unsubscribe send a message with UNSUBSCRIBE as subject to [email protected] (mailto:[email protected]) If you use auto-responders (like out-of-the-office messages), then make sure that they are not send to the list nor to the individual members of the list that send a message. Doing this will get you removed from the list. To unsubscribe send a message with UNSUBSCRIBE as subject to [email protected] If you use auto-responders (like out-of-the-office messages), then make sure that they are not send to the list nor to the individual members of the list that send a message. Doing this will get you removed from the list.
