I know this has been suggested before ( http://www.antionline.com/showthread...hreadid=266124 ). However, it is an older thread - and I know people like to neg for posting to a "blinking date" thread, so this was the next logical course of action.

I would like to suggest a forum for Database Security. Why? Here's why - I am currently auditing a location for our organization that is running MS-SQL and the password was the same as the account name for the administrator account. While I realize that this is more of a account/pw strength issue, I found this violation in a db, and have been finding other exploits as well that I would like to bounce off of the expertise rallied here at AO.

Also - I am finding issues with Notes Domino from NESSUS and had some questions about that. Now I was thinking of posting to the Misc. Security Questions or Newbie Security Forums, but I keep running into DB issues and thought I should at least suggest it.

Thanks in advance for your time and consideration.