Re: MS SQL Server

["Thor (Hammer of God)" <thor () hammerofgod com>]

As an alternative to the new instance of the same name, one can also execute 
"sp_attach_db" to directly attach to an mdf file; this obviates all the 
messing about with server names, instances, permissions, etc when you want 
to grab data from another install of MSSQL.

t

----- Original Message ----- 
From: "Beauford, Jason" <jbeauford () EightInOnePet com>
To: "xyberpix" <xyberpix () xyberpix com>; <pen-test () securityfocus com>
Sent: Friday, September 16, 2005 9:59 AM
Subject: RE: MS SQL Server


Here's an idea:

If you were to install an INSTANCE of SQL Server on another machine and
name the INSTANCE the SAME Name as the original SQL Server, you should
be able to just copy over the SQL Directories to your server and open it
from there.  Of course the SQL Service will need to be stopped, but
because you have admin rights on the box you can do this.

Here's something that sounds promising:
http://www.windowsitpro.com/Article/ArticleID/14346/14346.html?Ad=1

-JMB



------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------