Post reply

difference between sp_who and syslogins

  • August 8, 2005 at 8:49 am

    #102691

    Hi,

    I'm a little confused (nothing different there then!).

    If i run sp_who or sp_who2 or look at processes in EM then i see who is logged in, no problem.  However, when i look at users under Security in EM or query syslogins or sysxlogins then things don't match up.  I've got users logged in which don't appear in the Users list/Syslogins etc.  Am i missing something.  The users are Domain users, were running SQL Server 7.

    Thanks


    Growing old is mandatory, growing up is optional

  • August 8, 2005 at 9:37 am

    #580460

    OK, after using xp_logininfo i've found out what i need to know. 

    I tried running the above xp using the login i saw in the process list i.e xp_logininfo 'domain1\user1' and got nothing.  We've just changed domains so i thought i'd just try using the old domain name instead and low and behold i got the info back, so i guess the two domains are still mapped in some way.  The worst bit is it turns out these users are part of Bulitin\administrators, on a live box!!  And yes i know, the builtin should be removed.  This is all part of my security audit after just arriving in this job.

     


    Growing old is mandatory, growing up is optional

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply