1 / 4

MySQL Security on the Web

MySQL Security on the Web. By Nicholas Frees. Why MySQL?. It’s free Open source Highly configurable High volume capabilities Cross platform compatibility. Securing your System. Know your version Older than 4.1 has weak password protection (hash)

hilda
Télécharger la présentation

MySQL Security on the Web

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. MySQL Security on the Web By Nicholas Frees

  2. Why MySQL? • It’s free • Open source • Highly configurable • High volume capabilities • Cross platform compatibility

  3. Securing your System • Know your version • Older than 4.1 has weak password protection (hash) • Be aware of the common holes in whatever version you use • Password strength • Secure usernames • Delete superfluous usernames • Change admin name • Permissions • On global, database, table, and column • Injection • Magic Quotes (“magic_quotes_gpc“) • Hex encoded strings • Web Server • Setup apache or other on same machine as MySQL

  4. Staying Current • Be sure to stay up to date on recently discovered security holes • The National Vulnerability Database “nvd.nist.gov” • Benchmarks • Keep your version current • MySQL Homepage “www.mysql.com”

More Related