Posts
Checklist:
- Remove anonymous access to database
- Create a secure complex root password
- Execute in chroot-ed environment
- Remove sample databases and tables
- Set proper permissions and roles to database objects
- Protect databases from SQL injection by limiting input and bounds checking (restrict datatypes and length, check for illegal characters)
- Disable direct remote access to database server - DB administration should be local
- Apply all vendor security patches
No comments:
Post a Comment