The surface area of SQL Server comprises all aspects of the suite that can potentially be attacked. This includes features, services, and endpoints. The attackable surface area can also be increased or reduced by operating system, or network components, such as firewall design. The larger the attack surface, the greater the chance of a determined attacker successfully exploiting a vulnerability. The following sections discuss network configuration and ensuring that unsafe features are not turned on.
Network Configuration
The following sections provide an overview of ports and protocols, before diving ...