Tag Archives: databases

Open Source SQL Database Security, SQL Injection Prevention

Posted on by

GreenSQL is a Database Security solution.

GreenSQL is an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy and has built in support for MySQL and PostgreSQL. The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands (DROP, CREATE, etc). Commercial version of GreenSQL supporting Microsoft SQL Server, MySQL and PostgreSQL, The GreenSQL Express version is available for FREE at GreenSQL.com database security solutions.

via   | Open Source SQL Database Security, SQL Injection Prevention.

DB2 – the secret database

Posted on by

Certainly, according to the Winter Corporation’s 2005 survey, the largest OLTP (On-Line Transaction Processing) databases in the world are hosted on DB2. The volume prize goes to the Land Registry at 23.1 TB and the prize for the number of rows goes to UPS – 89.6 billion; both run on DB2.

via DB2 – the secret database • The Register.

DB2 has always ruled in the mainframe environment: on that platform it has no peer. In 1996 (ten years ago!) IBM made all the right technical moves to expand the use of DB2 down to the mini and even the PC markets. DB2 was produced in three versions. These have had various names over the years – UDB (Universal DataBase) was often used but it now being gently dropped by IBM. The most useful names I’ve come across are:

• DB2 for z/OS (Mainframe)

• DB2 for iSeries (AS400 as was)

• DB2 for LUW (Linux, UNIX and Windows)

Dated 18 January 2006.

PHP-based admin tool to manage SQLite databases

Posted on by

phpLiteAdmin is a web-based SQLite database admin tool written in PHP with support for SQLite2 and SQLite3. Following in the spirit of the flat-file system used by SQLite, phpLiteAdmin consists of a single source file, phpliteadmin.php, that is dropped into a directory on a server and then visited in a browser. There is no installation required. The available operations, feature set, interface, and user experience is comparable to that of phpMyAdmin.

via phpliteadmin – PHP-based admin tool to manage SQLite databases – Google Project Hosting.

Connecting to an external database from within a WordPress post

Posted on by

Connecting to an external database from within a WordPress post — Tyssen Design.

Hi Phil,

At the top of the post, I included:
<?php
include('/path/to/database/connection.php');
?

and that file looked like:
<?php
function runSQL($rsql) {
$rootpasswd='yourPasswordHere';
$user='yourUserHere';
$db='yourDBhere';
$dbcnx = @mysql_connect('localhost',$user,$rootpasswd,true);
if (!$dbcnx) {
echo '<p>Unable to connect to the database server at this time.</p>';
exit();
}
mysql_select_db($db, $dbcnx);
$result = mysql_query($rsql) or die ('test');
return $result;
mysql_close($connect);
}
}

Then to loop through the results:
$sql = "Your SQL statement goes here";
$result = runSQL($sql);
while ($row = mysql_fetch_array($result)) {
Do stuff;
}

An MIT Magic Trick: Computing On Encrypted Databases Without Ever Decrypting Them

Posted on by

An MIT Magic Trick: Computing On Encrypted Databases Without Ever Decrypting Them – Forbes.

Now the Google- and Citigroup-funded work of three MIT scientists holds the promise of solving that long-nagging issue in some of the computing world’s most common applications. CryptDB, a piece of database software the researchers presented in a paper (PDF here) at the Symposium on Operating System Principles in October, allows users to send queries to an encrypted set of data and get almost any answer they need from it without ever decrypting the stored information, a trick that keeps the info safe from hackers, accidental loss and even snooping administrators. And while it’s not the first system to offer that kind of magically flexible cryptography, it may be the first practical one, taking a fraction of a second to produce an answer where other systems that perform the same encrypted functions would require thousands of years.

Welcome to MariaDB! – MariaDB

Posted on by

MariaDB is a database server that offers drop-in replacement functionality for MySQL. MariaDB is built by some of the original authors of MySQL, with assistance from the broader community of Free and open source software developers. In addition to the core functionality of MySQL, MariaDB offers a rich set of feature enhancements including alternate storage engines, server optimizations, and patches.

via Welcome to MariaDB! – MariaDB.

Referential integrity

Posted on by

Referential integrity is a property of data which, when satisfied, requires every value of one attribute (column) of a relation (table) to exist as a value of another attribute in a different (or the same) relation (table).[1]

For referential integrity to hold in a relational database, any field in a table that is declared a foreign key can contain only values from a parent table’s primary key or a candidate key. For instance, deleting a record that contains a value referred to by a foreign key in another table would break referential integrity. Some relational database management systems (RDBMS) can enforce referential integrity, normally either by deleting the foreign key rows as well to maintain integrity, or by returning an error and not performing the delete. Which method is used may be determined by a referential integrity constraint defined in a data dictionary.

Via Referential integrity – Wikipedia, the free encyclopedia.