Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: network architecture related to db security - needed

from [Saqib Ali] Network Security [Permanent Link]
Subject: Re: network architecture related to db security - needed
Date: Mon, 28 Nov 2005 15:34:11 -0800 
solution 1)
If your DB is relatively small, consider hosting on the same box as
the application. and allow only localhost connections to the DB. make
sure that loopback interface is being used to talk to the DB. the
traffic should not be going over any eth interfaces.

solution 2)
if you want to host your DB on seperate box, make sure traffic is
tunneled through SSH or SSL.

solution 3)
Or you can want to host both the application and the DB inside a
firewall. and use Reverse SSL proxy to allow usert to use the
application. This is the safest option.

solution 4)
A graphical firewall/proxy. Again both the application server and DB
server are hosted inside a firewall, and the user connects using a
grafical firewall/proxy e.g. Citrix.


On 11/27/05, Bob Ababurko <bob@webstakez.com> wrote:

I am trying to figure out the best possible implementation to keep a db
safe that is going to used as a backend for publicly accessible web
services (Internet).  What are the better or best ways to protect the db
from being hacked OR what are the ways that the web machines will access
them?


In Peace,
Saqib Ali
http://www.xml-dev.com/blog/
"If you stop telling lies about me, I will stop telling the truth about you"
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Antivirus on intranet network, Neal C
Next by Date:  RE: Antivirus on intranet network, Lauren Ward
Previous by Thread:  network architecture related to db security - needed, Bob Ababurko
Next by Thread:  Codenomicon Testing Tools, Henry Tan
Indexes:  [Date] [Thread] [Top] [All Lists]