> I'm not exactly sure what patch you're talking about, I would > have to look > and see why the patch was issued.
Earlier in this thread Jamie from HMS said this: "This is a failing of the software, not of the server-side setting. MS just recently got a patch for the 2000 series of SQL that hides db's you don't have access to. I'm not sure what the story is on the new 2005 install, but I'm sure MS will eventually release a similar patch for it as well." > Security by obscurity only works if it's used in > combination with other, more powerful forms of security I agree with you wholeheartedly. I don't think anybody is saying that you should hide your DB name but forget about all other security practices. But by the same token, you shouldn't do all of the other security practices and ignore the obvious ones like keeping your db name/folder structures/internal Ips/usernames secret. ---------------- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. A1. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:229242 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54