|Applies To||RSA Product Set: NetWitness Endpoint|
RSA Product/Service Type: NetWitness Endpoint
RSA Version/Condition: 4.4.x
Platform (Other): MSSQL Server
Product Name: RSA NetWitness Endpoint
|Issue||In certain environments, it is requested that any extended stored procedures should be disabled.|
Web link resources for more information:
Extended stored procedures should not be enabled as good practice. In Centre for Internet Security (CIS) Benchmark for SQL Server 2008r2 and 2012, for the extended stored procedures listed, the recommendation is for those stored procedures to be disabled.
An extended stored procedure (xp) is a dynamic link library that runs directly in the address space of SQL Server. You can run extended stored procedures as normal stored procedures. Extended stored procedures are used to extend the capabilities of SQL Server. You can take advantage of the many extended stored procedures that come with SQL Server, or you can write your own.
A specific question regarding the stored procedure called:
There are two types of stored procedures:
RSA NetWitness Endpoint does not use the former, however, it does use CRL integration, which should not be disabled.