SQL Server中的cmd_shell組件功能強大,幾乎可通過該組建實現Windows系統的所有功能,正因此,這個組件也是SQL Server的最大安全隱患。SQL Server 2000中這個組件是默認開啟的,而SQL Server 2005中這個組件默認作為此服務器安全配置的一部分而被關閉。有時我們需要用到該組件,開啟此組件的相關語句如下:
代碼如下:
--To allow advanced options to be changed.
EXEC sp_configure 'show advanced options', 1
GO
--To update the currently configured value for advanced options.
RECONFIGURE
GO -- To enable the feature.
EXEC sp_configure 'xp_cmdshell', 1
GO
--To update the currently configured value for this feature.
RECONFIGURE
GO
為了保證數據庫服務器的安全,建議在使用完畢後關閉該組件,關閉該組件的相關語句如下:
代碼如下:
--To allow advanced options to be changed.
EXEC sp_configure 'show advanced options', 1
GO
--To update the currently configured value for advanced options.
RECONFIGURE
GO -- To enable the feature.
EXEC sp_configure 'xp_cmdshell', 0
GO
--To update the currently configured value for this feature.
RECONFIGURE
GO