Speeple News Search

Search: |

Tags | Domains | Searches | Statistics | Options | Advanced Search

pythian.com » Tags » Security

Related tags: audit, cpu, cross site request forgery, database security, grid control, group blog posts, mysql, oracle, passwords, purge

  1. Oracle’s quarterly Critical Patch Update is out

    Pythian Group Blog - Jul 15, 2008

    The latest quarterly update came out this morning. There are oh-my-god smoking guns this time, but several medium-important patches: CVE-2008-2607: Vulnerability in DBMS_AQELM (Advanced queueing package for e-mail and

    Also tagged: oracle, cpu, group blog posts

  2. Oracle’s querterly Critical Patch Update is out

    Pythian Group Blog - Jul 15, 2008

    The latest quarterly update came out this morning. There are oh-my-god smoking guns this time, but several medium-important patches: CVE-2008-2607: Vulnerability in DBMS_AQELM (Advanced queueing package for e-mail and

    Also tagged: oracle, cpu, group blog posts

  3. Oracle 11g — Audit Enabled by Default, But What About Purging?

    Pythian Group Blog - Jul 3, 2008

    If you have created a new Oracle 11g database using DBCA and opted to use by default 11g’s enhanced security settings or, at least, the audit setting, then you risk the unlimited growth of the SYSAUS tablespace that

    Also tagged: oracle, audit, purge, group blog posts, 11g, aud

  4. Database Security Using White-Hat Google Hacking

    Pythian Group Blog - Apr 18, 2008

    Here are the slides and links I am using for the “Database Security Using White-Hat Google Hacking” at the 2008 MySQL Users Conference and Expo. pdf slides Where to Start: http://johnny.ihackstuff.com/ghdb.php

    Also tagged: database, xss, mysql, sql injection, csrf, group blog posts, cross site scripting, cross site request forgery

  5. Pop Quiz: MySQL Password Hashing

    Pythian Group Blog - Mar 24, 2008

    The answers to the last pop quiz are up: http://www.pythian.com/blogs/868/pop-quiz-mysql-cluster So here’s another pop quiz. Given the following: Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL

    Also tagged: acl, login, password, mysql, group blog posts, old passwords, database security

  6. Does MySQL Send Passwords In the Clear?

    Pythian Group Blog - Mar 20, 2008

    I was asked this question recently, and I thought it was a great little tidbit of knowledge to pass along. The short answer is “no”. The slightly longer answer was written up by Jan Kneschke when dealing with a forum

    Also tagged: passwords, mysql, database security

  7. Why is Database Security So Hard?

    Pythian Group Blog - Mar 9, 2008

    I was recently asked a question by someone who had attended my Shmoocon talk entitled “Why are Databases So Hard to Secure?”. PDF slides are available (1.34 Mb). I was going to put this into a more formal structure

    Also tagged: mysql, group blog posts, non tech articles, database security

  8. It’s Oracle patch time again

    Pythian Group Blog - Jan 10, 2008

    It’s yet again time for Oracle’s critical patch update (CPUJAN2008). The update will be released on Tuesday January 15, and as of yet there are no details on exactly what vulnerabilities have been found, but the

    Also tagged: oracle, cpu, group blog posts

  9. Oracle Grid Control: The Importance of Deleting the emkey

    Pythian Group Blog - Dec 14, 2007

    Disclaimer: In most countries, looking at user passwords is illegal. Never try what is written below on a system that somebody other than you can access. Oracle Grid Control documentation warns against leaving the

    Also tagged: oracle, passwords, group blog posts, grid control