Questions tagged [database-security]
218 questions
0
votes
1 answer
Connect mongoDB atlas to application using VPC without username password
I have one mongo db hosted in AWS atlas account and my application is running in AWS EC2 instance. I want to access my DB using my application by VPC peering but it always ask for username password which i think is not a good practice because for…
samaksh shrivastava
- 89
- 4
0
votes
1 answer
auto backup the data of a web project in windows 10 MYSQL 5.7
i have created an inventory system (web-based) for a store which runs only in a system hosted by the same system
i want to set a scheduled backup like if the person is entering data in the system so mysql automatically create a backup copy of data…
waseeqnawaz
- 5
- 5
0
votes
1 answer
Access database on instance from my pc without exposing it to internet
Background:
I'm running a last version postgresql database on an cloud instance which for the moment has almost nothing on it and since two or three weeks, It started to shutdown itself every 4 or 5 days. It my first real database and It must…
Chetrit
- 33
- 2
- 8
0
votes
2 answers
Changing SYSDBA user password in InterBase
I am working with InterBase 2020 version. Since InterBase installs with default user SYSDBA and default password for SYSDBA as masterkey , I want to change the password for SYSDBA user.
Using gsec tool I am able to change the password however when I…
Deepak kumar jain
- 115
- 1
- 10
0
votes
3 answers
Views getting create automatically in Mysql
Today I noticed that suddenly, a number of views are created in my DB, most of these views deal with system performance. I am pretty sure I have not created these views, for all of then the DEFINER is
DEFINER=mysql.sys@localhost
Have I been a victim…
Vikas Mishra
- 82
- 8
0
votes
1 answer
Is there a way to update a firestore's document without giving permissions to the the user?
Let me explain my issue better, the question phrasing was a little bit confusing.
I want a global "clicks" document to update each time that a user clicks in an HTML element in my webpage. This is easy enough to do with the standard functions and by…
0
votes
0 answers
How to Save a SQLite/Room Database that uses SQLCipher into a Filestream?
I've just learned how to use SQLCipher here and I want to be able to save it to an SQLite file and I stumbled upon this approach where the file is saved via FileOutputStream. However, the FileOutputStream approach only worked when the database file…
dg713
- 3
- 4
0
votes
1 answer
Azure - Enable/Disable database setting for security purposes
We have certain security requirements in order for our app to go live within our orgainisation.
We are using the Microsoft azure platform to host the application along with a Azure SQL server and database. To meet these security requirements, we…
Conor8630
- 345
- 1
- 17
0
votes
1 answer
mysql secure installation seems to be not secure
After successful mysql_secure_installation
Output:
mysql_secure_installation
Enter current password for root (enter for none):
Switch to unix_socket authentication [Y/n] n
Change the root password? [Y/n] y
New password:
MyBullPassword
Re-enter new…
MANY Q
- 1
- 3
0
votes
1 answer
Is it possible to hijack a result of a query from a app that come from public network?
In short,
We made an app that interacts with a server to fetch some data.
But now we think about security and here is our question :
Can a man in the middle attack happen ? Can someone use something as burpsuite or wireshark to analyze queries that…
Théo Exagon
- 11
- 1
- 6
0
votes
1 answer
Firebase/Firestore - database has insecure rules?
I have a SwiftUI application, which uses Firebase as a back end, and my rules are something like this:
rules_version = '2';
service cloud.firestore {
match /databases/{database}/documents {
// This rule allows anyone on the internet to view,…
Evan
- 1,892
- 2
- 19
- 40
0
votes
1 answer
Can I hash / encrypt a database TEXT column?
Apologies in advance for what may be a silly question, but I am working on building a little "journal" website, where users can type in daily thoughts in a private way. I'm currently storing this information in a MEDIUMTEXT datatype in a MySQL…
user882134
- 279
- 3
- 16
0
votes
0 answers
postgres : force local connection to use password without pg_hba.conf
an application with postgres database is installed in a personal pc of a person (os: windows), how to prevent this person from accessing the db directly (using pgAdmin)?
the database cluster is already protected by a password (superadmin role) and…
geek11
- 41
- 1
- 5
0
votes
1 answer
How to link the two users so they can both view the same tables SQL*Plus
enter image description here]2]2I made my user with my tables etc. Then I created a new user with privileges but the tables are not there in the new user... how can I link the two users so both users can make use of the tables that they have access…
Annon
- 123
- 1
- 9
0
votes
1 answer
If I give a user table privileges do i need to give them a database role as well
I have a database and want to give out roles and privileges.
My aim is to allow multiple users - all have the same privileges - to be able to create, edit and view the tables (That's it).
I understand there are user table privileges that allow a…
Annon
- 123
- 1
- 9