Database Security

RSS feed for this section
This category contains 12 posts


Configuring Daily SQL 2005 Backup using Maintenance plan wizard.

By December 3, 2010 Post a comment

Steps to configure and schedule daily or recurring MS-SQL 2005 database backup using maintenance plan wizard and SQL studio. SQL Server Integration services must be installed and running on this server.

  • Open sql server 2005 Management Studio and connect to your server.
  • Expand the tree (left navigation) ”Management-Maintenance Plans”
  • Right click on node Maintenance Plans and Click “Maintenance Plan Wizard”
  • Click next to the wizard description, in the ‘select plan properties’ click on ‘Change’
  • Select schedule type as ‘recurring’ and configure your schedule for backup, for example select frequency as ‘daily’ for daily backups.

This is a preview of Configuring Daily SQL 2005 Backup using Maintenance plan wizard.. Read the full post (167 words, 2 images, estimated 40 secs reading time)

Free Open Source Database Firewall Solution.

By October 24, 2010 Post a comment

GreenSQL is a free new Open Source database firewall for protection from SQL injection attacks. It works as a reverse proxy and has built in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands (DROP, CREATE, etc). GreenSQL is distributed under the GPL license. It runs its check against a black list and white list before allowing clients access to the SQL server. There is a online demo on the website as well, below is a snapshot from it.

Typical setup:

This is a preview of Free Open Source Database Firewall Solution.. Read the full post (111 words, 4 images, estimated 27 secs reading time)

Cron job to regularly backup MySQL database

By July 17, 2010 Post a comment

Edit the cron job file, from command prompt type ‘crontab -e’

type 0 0 * * * /usr/bin/mysqldump -u <username> -p <userpassword> –all-databases > /backups/dbbackup.sql

add the above line, save and exit the file.

Permanent link to this post (35 words, estimated 8 secs reading time)

Safe3 SQL Injector – Automated SQL Database penetration Tool

By July 17, 2010 Post a comment

Safe3 SQL Injector is one of the most powerful penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers.

It supports

* GET/Post/Cookie Injection
* HTTP Basic, Digest, NTLM and Certificate authentications
* MySQL, Oracle, PostgreSQL, MSSQL, ACESS, DB2, Sybase & Sqlite
* Error/Union/Blind/Force SQL injection
* file access, command execute, IP domain reverse, web path guess, md5 crack etc.
* Super bypass WAF

Click Here for more information

Permanent link to this post (81 words, estimated 19 secs reading time)

« Previous