Sql-server – Is it still best practice to avoid using the default ports for SQL Server

best practicesdynamic-portsSecuritysql server

Historically, it has been recommended not to use the default ports for connections to SQL Server, as part of security best practice. On a server with a single, default instance, the following ports would be used by default:

SQL Server service – Port 1433 (TCP)
SQL Server Browser service – Port 1434 (UDP)
Dedicated Admin Connection – Port 1434 (TCP)

QUESTIONS:

Is this advice still relevant?
Should ALL of the above ports be changed?

Best Answer

Historically, it has been recommended not to use the default ports for connections to SQL Server, as part of security best practice.

Which was asinine then and still asinine now. Security through arguably obscurity isn't security at all.

Is this advice still relevant

IMHO it was never relevant. It was required for some compliance purposes because the people drafting up those compliances did not understand what they were doing, again, IMHO.

Should ALL of the above ports be changed?

I wouldn't change any.

Best Answer

Related Solutions

Sql-server – Is a Named Instance more Secure than the Default Instance

Sql-server – Connection to SQL Server requires TCP communication on port 50235

Related Question