dnswatchdog.iodocs
Issues

Port 1433: MSSQL

Open Microsoft SQL Server port detected on a publicly accessible host.

Severity: Critical | Port: 1433

What is MSSQL?

Microsoft SQL Server is a relational database management system widely used in enterprise applications. It listens on port 1433 by default for client connections. Applications connect to this port to read and write data.

Why this is a problem

A database port exposed to the internet means anyone can attempt to connect to your database. Attackers use automated tools to scan for open database ports and try default credentials, brute-force passwords, or exploit known vulnerabilities. A compromised database can lead to data theft, data manipulation, or ransomware.

What you should do

  • Block port 1433 from the internet — databases should never be publicly accessible
  • Place the database on a private subnet with no direct internet access
  • Applications should connect to the database through private network connections or VPN
  • If remote management is needed, use a bastion host or SSH tunnel
  • Ensure the sa (system administrator) account has a strong password or is disabled

Port 636: LDAPS

Open LDAPS port detected on a publicly accessible host.

Port 1521: Oracle

Open Oracle database port detected on a publicly accessible host.

On this page

What is MSSQL?Why this is a problemWhat you should do