Tagged articles

105 articles

Page 1 of 2

May 11, 2026 · Artificial Intelligence

How Google’s Open‑Source MCP Toolbox Secures AI Agent Database Access

The article analyzes the dangers of giving LLMs unrestricted database privileges, explains Google’s MCP Toolbox design that enforces least‑privilege, structured queries and authentication, provides a step‑by‑step Go integration guide, shares production pitfalls, and compares suitable use cases versus raw function calling.

AI AgentDatabase SecurityGo

0 likes · 18 min read

How Google’s Open‑Source MCP Toolbox Secures AI Agent Database Access

Java Companion

Apr 29, 2026 · Information Security

How Claude Deleted a Production Database in 9 Seconds: A Post‑mortem on AI Agent Risks

A PocketOS founder recounts how Claude Opus 4.6, invoked via Cursor on Railway, erased the production database and its backup in nine seconds, exposing excessive token permissions, lack of confirmation for destructive API calls, and prompting five concrete security recommendations for AI‑driven workflows.

AI agentsAPI permissionsClaude

0 likes · 10 min read

How Claude Deleted a Production Database in 9 Seconds: A Post‑mortem on AI Agent Risks

Java Architect Handbook

Mar 18, 2026 · Information Security

How to Enable Fuzzy Search on Encrypted Data: Methods, Pros & Cons

This article analyzes three categories of techniques—naïve, conventional, and advanced—for performing fuzzy queries on encrypted fields, compares their memory and performance trade‑offs, provides concrete code examples and storage calculations, and recommends the most practical approach for production systems.

Database Securityencrypted datafuzzy-search

0 likes · 13 min read

How to Enable Fuzzy Search on Encrypted Data: Methods, Pros & Cons

Java Backend Technology

Mar 4, 2026 · Databases

Is MySQL Dying? Why MariaDB and PostgreSQL Offer Safer, Faster Alternatives

The article analyzes MySQL's dwindling open‑source credibility, mounting security vulnerabilities, performance regressions, and Oracle's commercial lock‑in, contrasting it with MariaDB's transparent development and the growing migration of applications to MariaDB or PostgreSQL for better security and performance.

Database SecurityMariaDBmigration

0 likes · 8 min read

Is MySQL Dying? Why MariaDB and PostgreSQL Offer Safer, Faster Alternatives

Aikesheng Open Source Community

Jan 13, 2026 · Databases

Enforcing Client IP‑Based Access Control in MySQL InnoDB Cluster via Router

This article explains how to overcome MySQL InnoDB Cluster’s IP‑address loss and lack of Proxy Protocol by injecting real client IPs through MySQL Router connection attributes, configuring init_connect, creating a monitoring database and stored procedure, and testing access control for specific user‑IP ranges.

Database SecurityInnoDB ClusterRouter

0 likes · 8 min read

Enforcing Client IP‑Based Access Control in MySQL InnoDB Cluster via Router

ITPUB

Jan 10, 2026 · Information Security

How Oracle Secures Databases: Deep‑Defense Strategies and Domestic DB Comparison

This article examines the multi‑layered threats facing modern databases, outlines Oracle's comprehensive security capabilities—from firewalls and encryption to auditing and immutable tables—and compares them with the security features of leading domestic database products.

Database SecurityOracleaccess control

0 likes · 27 min read

How Oracle Secures Databases: Deep‑Defense Strategies and Domestic DB Comparison

Code Ape Tech Column

Dec 1, 2025 · Backend Development

How to Auto‑Encrypt Sensitive Fields in Spring Boot with MyBatis Using Annotations

This article explains a Spring Boot and MyBatis solution that automatically encrypts and decrypts sensitive database fields via an @Encrypted annotation, eliminating manual cryptographic code, reducing maintenance overhead, and preserving performance while ensuring strong data protection.

Database SecurityJavaMyBatis

0 likes · 10 min read

How to Auto‑Encrypt Sensitive Fields in Spring Boot with MyBatis Using Annotations

Architecture Digest

Nov 19, 2025 · Information Security

Preventing SQL Injection: Use Prepared Statements and MyBatis Safely

SQL injection lets attackers turn simple input fields into destructive commands that can delete or compromise databases; the article explains how string‑concatenated queries become vulnerable, demonstrates the attack step‑by‑step, and shows how parameterized queries via PreparedStatement and MyBatis’ #{ } syntax, plus defense‑in‑depth measures, effectively mitigate the risk.

Database SecurityMyBatisParameterized Query

0 likes · 10 min read

Preventing SQL Injection: Use Prepared Statements and MyBatis Safely

Xiao Liu Lab

Nov 1, 2025 · Databases

How to Fake MySQL 8 Version to Trick Vulnerability Scanners (Step‑by‑Step)

This guide shows how to modify the MySQL 8 binary to change its reported version, letting vulnerability scanners misidentify the server and bypass patching, while providing a quick, temporary defense for internal or compliance‑driven environments.

Database SecurityVersion Spoofingmysql

0 likes · 5 min read

How to Fake MySQL 8 Version to Trick Vulnerability Scanners (Step‑by‑Step)

Xiao Liu Lab

Oct 29, 2025 · Databases

5 Underrated MySQL Security Settings That Block 90% of Attacks

Even if your database appears functional and backed up, a single SQL injection can expose all data; this article reveals five often‑overlooked MySQL security configurations—disabling remote root login, turning off dangerous functions, enabling audit logs, enforcing SSL, and cleaning ghost accounts—to dramatically harden your database in under 30 minutes.

Database SecuritySQL injectionSSL

0 likes · 6 min read

5 Underrated MySQL Security Settings That Block 90% of Attacks

Architect's Tech Stack

Sep 28, 2025 · Backend Development

Secure Your MySQL Data with MyBatis TypeHandler: Automatic Encryption & Decryption

This article explains how to protect sensitive user information such as phone numbers in a MySQL database by using MyBatis TypeHandler to automatically encrypt data on insert and decrypt it on query, complete with code examples and configuration steps.

Database SecurityJavaMyBatis

0 likes · 7 min read

Secure Your MySQL Data with MyBatis TypeHandler: Automatic Encryption & Decryption

Ops Development & AI Practice

Sep 25, 2025 · Databases

Master Passwordless PostgreSQL Logins: .pgpass, PGPASSWORD, and pg_hba.conf

This guide explains how to bypass interactive password prompts when using psql by configuring a per‑user .pgpass file, setting the PGPASSWORD environment variable for temporary sessions, and adjusting the server‑side pg_hba.conf file, while covering required file formats, permission settings, security trade‑offs, and best‑practice recommendations.

.pgpassDatabase SecurityPGPASSWORD

0 likes · 7 min read

Master Passwordless PostgreSQL Logins: .pgpass, PGPASSWORD, and pg_hba.conf

Aikesheng Open Source Community

Sep 22, 2025 · Databases

How to Install and Configure Percona Audit Plugin on MySQL 8.0

This guide walks through the background, environment setup, installation steps, configuration parameters, and testing results for using the Percona audit logging plugin with MySQL 8.0, demonstrating compatibility, key settings, and how to filter logged events.

Audit PluginConfigurationDatabase Security

0 likes · 12 min read

How to Install and Configure Percona Audit Plugin on MySQL 8.0

Raymond Ops

Aug 7, 2025 · Databases

How to Enable and Configure MariaDB Audit Logging Plugin

This guide walks you through verifying, installing, configuring, and activating the MariaDB server_audit plugin, including required ConfigMap edits, optional SQL commands, and a Kubernetes rollout to ensure comprehensive audit logging of connections, queries, and table events.

Audit loggingDatabase SecurityKubernetes

0 likes · 4 min read

How to Enable and Configure MariaDB Audit Logging Plugin

Alibaba Cloud Developer

Jun 23, 2025 · Information Security

Securely Rotate Database Credentials with MSE Nacos, KMS, and Apache Druid

This article explains how to protect and dynamically rotate database usernames and passwords in modern applications by integrating MSE Nacos, Alibaba Cloud KMS, and Apache Druid, reducing leakage risk, eliminating manual maintenance, and achieving near‑instant, zero‑downtime credential updates.

Apache DruidDatabase SecurityDynamic Credential Rotation

0 likes · 9 min read

Securely Rotate Database Credentials with MSE Nacos, KMS, and Apache Druid

IT Xianyu

Apr 24, 2025 · Databases

PostgreSQL DBA Guide: Permission Minimization, Log Analysis with pgBadger, and Security Hardening

This tutorial explains why DBAs need security hardening and log analysis, shows how to configure minimal‑privilege roles and precise permissions in PostgreSQL, demonstrates how to detect and revoke redundant privileges, and provides a step‑by‑step guide to installing and using pgBadger for log analysis and automated reporting.

DBADatabase SecurityPostgreSQL

0 likes · 8 min read

PostgreSQL DBA Guide: Permission Minimization, Log Analysis with pgBadger, and Security Hardening

Huolala Tech

Mar 18, 2025 · Information Security

Mastering MSSQL Attack Chains: Exploit Techniques and Defense Strategies

This article provides a comprehensive analysis of MSSQL attack vectors—including stored procedures, COM components, CLR, sandbox bypass, triggers, proxy jobs, Kerberoasting, and linked servers—detailing prerequisites, exploitation steps with code examples, and practical mitigation recommendations to harden database security.

Attack TechniquesCLRCOM

0 likes · 21 min read

Mastering MSSQL Attack Chains: Exploit Techniques and Defense Strategies

Aikesheng Open Source Community

Feb 27, 2025 · Information Security

Improving Data Export Workflows and Security: From 1.0 to 2.0 with Classification and Dynamic Approval

This article examines the security challenges of data export work orders in MySQL environments, outlines the shortcomings of the original 1.0 workflow, and presents a comprehensive 2.0 redesign that introduces dynamic approvals, data classification, execution‑plan analysis, and code‑level solutions to mitigate data leakage risks.

Data ExportDatabase SecuritySQL parsing

0 likes · 15 min read

Improving Data Export Workflows and Security: From 1.0 to 2.0 with Classification and Dynamic Approval

Tencent Cloud Developer

Jan 14, 2025 · Information Security

Can Database Signatures Prevent Tampering? An Analysis of Financial Risk Controls

The article revisits the debate on tampering with WeChat balances, explaining that joint database signatures can detect but not stop alterations, that risk‑control checks and code safeguards block unauthorized withdrawals, that identity verification prevents cross‑account transfers, and that a layered, real‑time monitoring system is essential for robust fund protection.

Database SecurityWeChatfinancial fraud

0 likes · 6 min read

Can Database Signatures Prevent Tampering? An Analysis of Financial Risk Controls

Efficient Ops

Nov 26, 2024 · Information Security

When Ops Go Wrong: Real Database Deletion Cases and Their Legal Fallout

This article reviews several high‑profile incidents where operations staff deleted or sabotaged critical databases, detailing the legal consequences, financial losses, and lessons for improving security and operational safeguards.

Database Securitydata loss preventioninformation security

0 likes · 7 min read

When Ops Go Wrong: Real Database Deletion Cases and Their Legal Fallout

Efficient Ops

Nov 13, 2024 · Information Security

How Leading Companies Stop Insider Data Theft: Real Ops & Security Practices

This article compiles practical insights from Zhihu discussions and real‑world experience on preventing insider spying and tampering with databases, covering least‑privilege policies, mutual supervision, strict access controls, audit mechanisms, and cultural factors that shape effective information security operations.

Database Securityaccess controlaudit

0 likes · 11 min read

How Leading Companies Stop Insider Data Theft: Real Ops & Security Practices

Open Source Tech Hub

May 8, 2024 · Databases

How Yearning Automates MySQL SQL Auditing and Rollback – A Complete Guide

Yearning is an open-source MySQL SQL audit platform built with Go and Vue.js that automates statement review, generates rollback scripts, provides audit logging, supports multi-channel notifications, and offers fine-grained permission control, with installation instructions and configuration details for rapid deployment.

Database SecurityGoSQL audit

0 likes · 5 min read

How Yearning Automates MySQL SQL Auditing and Rollback – A Complete Guide

Java Tech Enthusiast

May 3, 2024 · Databases

MySQL Data Recovery: Strategies for Handling Accidental Deletion

The article explains how to respond to accidental MySQL data deletion by analyzing loss causes, choosing recovery methods such as mysqldump backups, binary‑log point‑in‑time restores, or Percona’s InnoDB tool, provides step‑by‑step commands, and recommends preventive practices like regular backups, transactions, and strict permissions.

BinlogData RecoveryDatabase Backup

0 likes · 3 min read

MySQL Data Recovery: Strategies for Handling Accidental Deletion

php Courses

Apr 10, 2024 · Information Security

Preventing SQL Injection in PHP Using mysqli_real_escape_string

This article explains how SQL injection attacks can compromise web applications and demonstrates how to securely handle user input in PHP by using the mysqli_real_escape_string function to escape special characters before constructing SQL queries, thereby protecting the database from malicious exploitation.

Database SecurityPHPSQL injection

0 likes · 4 min read

Preventing SQL Injection in PHP Using mysqli_real_escape_string

MaGe Linux Operations

Feb 19, 2024 · Databases

Secure MySQL 8 with SSL: Step-by-Step Guide to Encrypt Your Data

Learn how to secure MySQL 8 connections by enabling SSL, covering the protocol’s encryption and authentication principles, generating certificates, configuring server and client settings, and testing the encrypted connection with detailed commands and practical examples.

ConfigurationDatabase SecuritySSL

0 likes · 6 min read

Secure MySQL 8 with SSL: Step-by-Step Guide to Encrypt Your Data

Full-Stack Internet Architecture

Jan 8, 2024 · Information Security

Understanding SQL Injection and Prevention with Spring Boot and MyBatis

This article explains the concept of SQL injection, demonstrates a vulnerable query example, and provides a step‑by‑step Spring Boot and MyBatis implementation—including table creation, Java controller, service, DAO, mapper, and configuration—to illustrate how proper parameter handling prevents injection attacks.

Database SecurityJavaMyBatis

0 likes · 10 min read

Understanding SQL Injection and Prevention with Spring Boot and MyBatis

Laravel Tech Community

Sep 18, 2023 · Databases

Why MySQL May Not Be Suitable for Containerization and When It Can Be

The article examines the challenges of running MySQL in Docker containers, highlighting data‑security, performance, state, and resource‑isolation concerns, while also presenting scenarios and strategies where containerizing MySQL can be viable.

ContainersDatabase SecurityDocker

0 likes · 7 min read

Why MySQL May Not Be Suitable for Containerization and When It Can Be

Aikesheng Open Source Community

Sep 13, 2023 · Databases

Verifying OceanBase Transparent Data Encryption Using ob_admin dumpsst

This article demonstrates how to configure transparent encryption in OceanBase 4.1.0.0 Enterprise, create encrypted and non‑encrypted tables, perform major merges, and use the ob_admin dumpsst tool to inspect macro blocks, confirming that encrypted data is not readable while non‑encrypted data is visible.

Database SecurityOceanBaseTransparent Encryption

0 likes · 17 min read

Verifying OceanBase Transparent Data Encryption Using ob_admin dumpsst

Aikesheng Open Source Community

Sep 12, 2023 · Databases

Understanding MySQL 8.0 Password Policy Options and Common Misunderstandings

This article analyzes MySQL 8.0 password‑related parameters, explains the meaning of NULL values in the mysql.user table, demonstrates how global settings interact with per‑user attributes, and clarifies the priority rules between password_history and password_reuse_interval through practical test scenarios.

ALTER USERCREATE USERDatabase Administration

0 likes · 9 min read

Understanding MySQL 8.0 Password Policy Options and Common Misunderstandings

Aikesheng Open Source Community

Aug 30, 2023 · Information Security

Configuring Transport Encryption for OceanBase (OBServer and ODP)

This guide explains how to prepare the environment, enable SSL transport encryption for OceanBase OBServer and ODP via OBProxy, configure certificates and whitelist settings, and verify the encryption using MySQL and RPC ports, while highlighting common pitfalls and reference links.

Database SecurityOBproxyObserver

0 likes · 7 min read

Configuring Transport Encryption for OceanBase (OBServer and ODP)

ITPUB

Aug 18, 2023 · Databases

Key Takeaways from DTCC2023: Vector Databases, Data Privacy, and Intelligent Ops

The 14th China Database Technology Conference (DTCC2023) showcased cutting‑edge advances in vector databases, data privacy, MySQL security, and AI‑driven intelligent operations, featuring insights from industry leaders at Huawei, Tencent, eBay, Bilibili and more.

AIBig DataDatabase Security

0 likes · 10 min read

Key Takeaways from DTCC2023: Vector Databases, Data Privacy, and Intelligent Ops

Java Architect Essentials

Aug 13, 2023 · Information Security

How to Perform Fuzzy Searches on Encrypted Data Without Breaking Security

This article examines three categories of approaches—naïve, conventional, and advanced—for enabling fuzzy queries on encrypted fields, comparing their implementation steps, performance trade‑offs, storage costs, and security implications, and provides practical examples such as in‑memory decryption, tag mapping, database functions, tokenization, and algorithm‑level designs.

Database Securityencrypted dataencryption

0 likes · 11 min read

How to Perform Fuzzy Searches on Encrypted Data Without Breaking Security

Aikesheng Open Source Community

Jul 19, 2023 · Databases

Understanding MySQL Permission Conflict Between USAGE and GRANT OPTION

This article explains why a MySQL user granted both USAGE and GRANT OPTION on a database can see schema information but cannot query table data, demonstrates the issue with local tests, and provides proper REVOKE commands to cleanly remove the conflicting permissions.

Database SecurityGRANT OPTIONPermissions

0 likes · 9 min read

Understanding MySQL Permission Conflict Between USAGE and GRANT OPTION

Aikesheng Open Source Community

Jun 27, 2023 · Information Security

Comparison of User Management and Access Control between OceanBase (MySQL Mode) and MySQL

This article compares OceanBase (MySQL mode) and MySQL in terms of user management, password syntax, user locking, permission levels, grant statements, grant tables, network white‑list access control, row‑level security, and role management, highlighting similarities, differences, and migration considerations.

Database SecurityOceanBasePrivileges

0 likes · 18 min read

Comparison of User Management and Access Control between OceanBase (MySQL Mode) and MySQL

Code Ape Tech Column

May 28, 2023 · Backend Development

Implementing Fuzzy Search on Encrypted Sensitive Fields in MySQL with Spring Boot

This article explains how to enable fuzzy search on encrypted sensitive fields such as phone numbers and ID numbers in a MySQL database by using Spring Boot, AOP, tokenized ciphertext mapping tables, and encrypted keyword queries to balance security and query performance.

BackendDatabase SecuritySpring Boot

0 likes · 11 min read

Implementing Fuzzy Search on Encrypted Sensitive Fields in MySQL with Spring Boot

Su San Talks Tech

Apr 17, 2023 · Databases

How a Single Redis Command Cost a Company $4 Million – Risks and Prevention

The article examines a real‑world incident where an unsafe Redis command caused a $4 million loss, then demonstrates performance testing with ten million keys, shows how to disable dangerous commands, replace KEYS with SCAN, and avoid big‑key issues for safer database operations.

BigKeyDatabase SecurityPerformance Testing

0 likes · 6 min read

How a Single Redis Command Cost a Company $4 Million – Risks and Prevention

Aikesheng Open Source Community

Feb 3, 2023 · Databases

SQLE 2.2302.0-pre3 Release Notes and Feature Overview

The SQLE 2.2302.0-pre3 release introduces a preview version of the SQL audit tool with enhanced SQL Server audit plugin, new rule support, context-aware auditing, rollback generation, and several UI optimizations, while providing links to repositories, documentation, and demo environments.

Database SecurityRelease NotesSQL Server

0 likes · 4 min read

SQLE 2.2302.0-pre3 Release Notes and Feature Overview

Aikesheng Open Source Community

Nov 3, 2022 · Databases

Using MySQL AES_ENCRYPT and AES_DECRYPT for Data Encryption

This article explains MySQL's native data encryption capabilities, detailing the AES_ENCRYPT/AES_DECRYPT functions, their parameters, storage considerations, example usage, and best‑practice recommendations for secure and efficient encryption of sensitive fields.

AESDatabase SecuritySQL

0 likes · 8 min read

Using MySQL AES_ENCRYPT and AES_DECRYPT for Data Encryption

Tencent Cloud Developer

Sep 13, 2022 · Databases

Implementing a Transparent Data Encryption Framework for Database Security

The article presents a transparent data‑encryption framework for database security that uses an AOP‑based driver interceptor to rewrite SQL, encrypt/decrypt sensitive fields, manage performance with locks and caching, support configurable algorithms via SPI/YAML, and guide a three‑phase migration with minimal code intrusion.

Data MigrationDatabase SecurityPerformance Optimization

0 likes · 11 min read

Implementing a Transparent Data Encryption Framework for Database Security

Aikesheng Open Source Community

Aug 19, 2022 · Databases

SQLE 1.2208.0-pre3 Release Notes: New MySQL Audit Rules and Scenario‑Based Auditing

The SQLE 1.2208.0-pre3 preview release introduces several new MySQL audit rules, scenario‑based audit mode enhancements, a detailed release notes list, bug fixes, and links to documentation and previous versions, providing a comprehensive overview for database users and administrators.

Database SecuritySQL auditSQLE

0 likes · 7 min read

SQLE 1.2208.0-pre3 Release Notes: New MySQL Audit Rules and Scenario‑Based Auditing

dbaplus Community

Jun 26, 2022 · Information Security

How to Build a Lightweight MySQL/MariaDB Audit Log Platform with LogAnalyzer

This guide explains how to set up a lightweight database audit log platform using MariaDB's audit plugin, Rsyslog, and the LogAnalyzer web interface, covering environment preparation, plugin installation, syslog forwarding, MySQL schema creation, and LogAnalyzer configuration for real‑time monitoring and compliance reporting.

Database SecurityLogAnalyzerMariaDB

0 likes · 11 min read

How to Build a Lightweight MySQL/MariaDB Audit Log Platform with LogAnalyzer

Aikesheng Open Source Community

Jun 21, 2022 · Databases

Understanding MySQL 8.0 caching_sha2_password Authentication Errors and Solutions

This article explains why the MySQL 8.0 client may report the caching_sha2_password authentication error requiring a secure connection, describes the plugin’s design, RSA and SSL mechanisms, cache behavior, and provides practical commands and replication settings to resolve the issue.

AuthenticationDatabase SecurityRSA

0 likes · 8 min read

Understanding MySQL 8.0 caching_sha2_password Authentication Errors and Solutions

21CTO

May 18, 2022 · Information Security

Why a Database Admin’s Data Deletion Led to a 7‑Year Prison Sentence

A former Lianjia database administrator was sentenced to seven years for deleting critical financial data, revealing how insider misuse of root privileges, inadequate security response, and ignored vulnerability reports can cripple a multi‑billion‑dollar enterprise, while similar incidents underscore the broader risks of insider threats.

Database Securitydata deletioninformation security

0 likes · 8 min read

Why a Database Admin’s Data Deletion Led to a 7‑Year Prison Sentence

Code Ape Tech Column

May 16, 2022 · Information Security

Data Masking with Sharding-JDBC: Concepts, Configuration, and Custom Encryptors

This article explains how Sharding-JDBC can perform data masking at the persistence layer, detailing key concepts, configuration of data sources, encryptors, and tables, demonstrating practical examples with built‑in MD5 and AES encryptors, and showing how to implement custom encryptors and query‑assisted encryption for enhanced security.

Custom EncryptorDatabase SecuritySharding-JDBC

0 likes · 20 min read

Data Masking with Sharding-JDBC: Concepts, Configuration, and Custom Encryptors

Architecture Digest

Jan 18, 2022 · Databases

Implementing MyBatis TypeHandler for Field Encryption and Decryption

This article demonstrates how to securely store and retrieve sensitive user data such as phone numbers in a MySQL database by creating a custom MyBatis TypeHandler that automatically encrypts values on insert and decrypts them on query, complete with code examples and configuration steps.

Database SecurityJavaMyBatis

0 likes · 7 min read

Implementing MyBatis TypeHandler for Field Encryption and Decryption

HomeTech

Dec 28, 2021 · Information Security

SQL Injection Vulnerability Analysis and Defense Strategies

This article provides a comprehensive analysis of SQL injection vulnerabilities, covering their principles, testing tools, repair methods, and defense strategies, with practical implementation guidance for secure web application development.

Database SecurityOWASPParameterized Queries

0 likes · 15 min read

SQL Injection Vulnerability Analysis and Defense Strategies

ITPUB

Nov 2, 2021 · Databases

Why Open-Source Databases Like PostgreSQL Boost Security for Hybrid Workforces

Since the pandemic forced remote work, organizations must protect growing data across hybrid teams, and the article argues that open-source databases such as PostgreSQL offer stronger, more adaptable security than legacy closed-source systems by enabling rapid patching, community scrutiny, and cost-effective protection.

Data ProtectionDatabase SecurityPostgreSQL

0 likes · 5 min read

Why Open-Source Databases Like PostgreSQL Boost Security for Hybrid Workforces

Architecture Digest

Nov 1, 2021 · Databases

Quick Start Guide to Data Desensitization with Apache ShardingSphere and Spring

This article explains how to use Apache ShardingSphere's data desensitization module with Spring and Spring Boot to transparently encrypt sensitive fields such as ID numbers and bank cards, covering pain points, configuration steps, code examples, and datasource integration for compliance‑driven applications.

AESDatabase SecurityJava

0 likes · 9 min read

Quick Start Guide to Data Desensitization with Apache ShardingSphere and Spring

dbaplus Community

Oct 12, 2021 · Information Security

How d18n Enables Cross‑Platform Data Desensitization for Secure Databases

This article introduces d18n, a Go‑based, cross‑platform data‑desensitization tool that supports multiple databases and file formats, explains common desensitization scenarios, details its sensitive‑data identification techniques—including keyword, regex, and NLP‑based DFA—and outlines six practical masking algorithms with export and import workflows.

Database SecurityGod18n

0 likes · 11 min read

How d18n Enables Cross‑Platform Data Desensitization for Secure Databases

Programmer DD

Aug 24, 2021 · Databases

Seamless Data Encryption with ShardingSphere: A Spring Guide

This article explains why encrypting sensitive customer data in databases is essential, outlines common pain points, and demonstrates how Apache ShardingSphere’s data‑desensitization module can be quickly configured in Spring (XML and Boot) to provide transparent AES encryption and decryption without altering business code.

AESDatabase SecurityJava

0 likes · 8 min read

Seamless Data Encryption with ShardingSphere: A Spring Guide

Architect's Tech Stack

Jul 29, 2021 · Databases

Quick Start Guide to Data Encryption (Masking) with Apache ShardingSphere in Spring and Spring Boot

This article explains how to use Apache ShardingSphere's encryption module to transparently store and query sensitive customer data such as ID numbers and bank cards by configuring encryption rules in Spring or Spring Boot, eliminating manual SQL encryption and simplifying compliance for legacy systems.

Database SecurityJavaSQL Masking

0 likes · 9 min read

Quick Start Guide to Data Encryption (Masking) with Apache ShardingSphere in Spring and Spring Boot

Programmer DD

Jul 29, 2021 · Databases

Secure Sensitive Data in ShardingSphere: Quick Start Guide for Spring

This tutorial explains why encrypting sensitive fields like ID numbers and bank cards is required, outlines common pain points, and shows how to configure ShardingSphere's data‑desensitization module using Spring namespace or Spring Boot with full code examples and configuration files.

Database SecurityJavaShardingSphere

0 likes · 8 min read

Secure Sensitive Data in ShardingSphere: Quick Start Guide for Spring

Code Ape Tech Column

Jul 19, 2021 · Databases

Secure Your Data with ShardingSphere: Quick Start Guide for Spring Encryption

This article explains why sensitive customer data must be encrypted at rest, outlines the drawbacks of manual SQL encryption and retrofitting existing systems, and provides step‑by‑step Spring and Spring Boot configurations using ShardingSphere's encryption module with full code examples.

Database SecurityJavaShardingSphere

0 likes · 9 min read

Secure Your Data with ShardingSphere: Quick Start Guide for Spring Encryption

Aikesheng Open Source Community

May 14, 2021 · Databases

Understanding and Managing MySQL User Password Expiration

This article explains the MySQL password expiration mechanism, introduces the relevant columns in the mysql.user table, demonstrates how to set passwords to never expire, expire after a specific interval, or expire immediately, and shows how to configure the global default_password_lifetime variable.

Database SecuritySQLUser Management

0 likes · 10 min read

Understanding and Managing MySQL User Password Expiration

dbaplus Community

Apr 25, 2021 · Information Security

Essential MySQL Security Practices: From Storage to Data Encryption

Learn comprehensive MySQL security strategies covering storage RAID configurations, network whitelisting, OS hardening, account management, privilege restrictions, audit logging, regular backups, data encryption, and disaster recovery to protect enterprise data against breaches and ensure stable, high‑performance operations.

BackupDatabase Securityaccess control

0 likes · 13 min read

Essential MySQL Security Practices: From Storage to Data Encryption

Aikesheng Open Source Community

Feb 7, 2021 · Databases

Using Partial Revokes in MySQL 8.0.16 to Revoke Granular Permissions

This article explains MySQL's Partial Revokes feature introduced in version 8.0.16, showing how to enable the partial_revokes system variable, grant and selectively revoke SELECT privileges at both coarse and fine granularity, and verify the resulting restrictions using SHOW GRANTS and the mysql.user table.

Database SecurityGrantPartial Revokes

0 likes · 5 min read

Using Partial Revokes in MySQL 8.0.16 to Revoke Granular Permissions

Practical DevOps Architecture

Jan 5, 2021 · Databases

MySQL User Permissions: Creating, Granting, Viewing, and Deleting Accounts

This guide explains MySQL's three levels of user permissions, shows how to create accounts with various host specifications, demonstrates how to delete users, list existing accounts, and display a specific user's granted privileges using SQL statements.

Account ManagementDatabase SecuritySQL

0 likes · 3 min read

MySQL User Permissions: Creating, Granting, Viewing, and Deleting Accounts

Alibaba Cloud Developer

Jan 4, 2021 · Databases

Why Cloud‑Native Distributed Databases Are the Future of Enterprise Data

The article reviews the evolution of database systems driven by cloud computing, big‑data demands and distributed architectures, highlights Alibaba Cloud’s cloud‑native offerings such as PolarDB and AnalyticDB, and discusses trends, security, and best practices for modern enterprise data platforms.

Alibaba CloudBig DataDatabase Security

0 likes · 14 min read

Why Cloud‑Native Distributed Databases Are the Future of Enterprise Data

ITPUB

Dec 13, 2020 · Information Security

How Hackers Ransom MySQL Databases on the Dark Web

Over 85,000 MySQL databases are being sold on the dark web for around $550 each, with attackers automating ransom portals, demanding Bitcoin payments, and auctioning unpaid data after nine days, while victims share ransom notes across forums and Bitcoin abuse trackers monitor the growing threat.

BitcoinDatabase Securitymysql

0 likes · 5 min read

How Hackers Ransom MySQL Databases on the Dark Web

Programmer DD

Nov 12, 2020 · Information Security

Uncovering MySQL Exploits: From File Reads to Remote Code Execution

This article provides a comprehensive overview of common MySQL attack techniques—including client‑side arbitrary file reads, SSRF‑based data extraction, server‑side file read/write, remote code execution vulnerabilities (CVE‑2016‑6662), and authentication bypass (CVE‑2012‑2122)—and supplies practical command examples and mitigation insights.

CVEDatabase SecurityExploitation

0 likes · 14 min read

Uncovering MySQL Exploits: From File Reads to Remote Code Execution

Aikesheng Open Source Community

Sep 8, 2020 · Databases

Installing and Configuring the MariaDB Audit Plugin for MySQL

This guide explains how to obtain the MariaDB audit plugin, migrate it to a MySQL 5.7 environment, install and load the plugin, configure audit parameters, and manage audit log files and formats for effective database activity monitoring.

Audit PluginConfigurationDatabase Security

0 likes · 5 min read

Installing and Configuring the MariaDB Audit Plugin for MySQL

ITPUB

Aug 31, 2020 · Databases

How to Restrict IP Access to Oracle Database Using sqlnet.ora, Hosts Files, and iptables

This guide explains three practical methods—modifying sqlnet.ora, configuring /etc/hosts.deny and /etc/hosts.allow, and applying iptables rules—to allow only specific IP addresses or subnets to connect to an Oracle 11g database and its SSH service on a CentOS server.

Database SecurityIP restrictionOracle

0 likes · 9 min read

How to Restrict IP Access to Oracle Database Using sqlnet.ora, Hosts Files, and iptables

Architects Research Society

Aug 6, 2020 · Information Security

SQL Injection Attacks: Statistics, Real‑World Examples, and Protection Strategies

This article examines the prevalence of SQL injection attacks, presenting Imperva’s recent statistics, common attack vectors, real-world examples, and practical defenses such as prepared statements, input sanitization, and web application firewalls, while also offering Python code illustrations of secure and insecure database queries.

Database SecurityPythonSQL injection

0 likes · 11 min read

SQL Injection Attacks: Statistics, Real‑World Examples, and Protection Strategies

MaGe Linux Operations

Jun 18, 2020 · Databases

Master MongoDB Permissions: From Basic Users to Super Admins

This guide explains MongoDB permission levels, clarifies common misconceptions, and provides step‑by‑step commands to create ordinary, administrative, authorization, and super‑admin users, enable authentication, and verify read/write access across multiple databases.

Database SecurityMongoDBPermissions

0 likes · 7 min read

Master MongoDB Permissions: From Basic Users to Super Admins

360 Tech Engineering

Jun 12, 2020 · Databases

Comparison of Open‑Source MySQL Audit Plugins: MariaDB, Percona, and McAfee

This article surveys MySQL audit capabilities, explains the limitations of general and binary logs, introduces several open‑source audit plugins with installation and configuration details, and compares MariaDB, Percona, and McAfee audit plugins in terms of granularity, log format, and performance impact.

Database SecurityMariaDBMcAfee

0 likes · 10 min read

Comparison of Open‑Source MySQL Audit Plugins: MariaDB, Percona, and McAfee

Aikesheng Open Source Community

Apr 16, 2020 · Databases

Analyzing MySQL 5.7 Unencrypted and MySQL 8.0 Encrypted Connections via Packet Capture

This article demonstrates how to capture and analyze MySQL traffic on both unencrypted MySQL 5.7 and TLS‑encrypted MySQL 8.0 using tcpdump and Wireshark, explains the differences in packet contents, and walks through the TLS handshake process in detail.

Database SecurityPacket CaptureTLS

0 likes · 8 min read

Analyzing MySQL 5.7 Unencrypted and MySQL 8.0 Encrypted Connections via Packet Capture

Aikesheng Open Source Community

Mar 18, 2020 · Databases

Using Roles in MySQL 8.0: Concepts, Creation, Assignment, Activation, and Management

This tutorial explains MySQL 8.0 role concepts, demonstrates how to create roles, assign them to multiple users, activate default roles, configure role parameters, and revoke roles, providing step‑by‑step examples with complete MySQL commands and explanations for effective privilege management.

Database SecurityRolesSQL

0 likes · 11 min read

Using Roles in MySQL 8.0: Concepts, Creation, Assignment, Activation, and Management

ITPUB

Feb 29, 2020 · Information Security

What the Weimeng Database Deletion Reveals About Backup and Permission Strategies

The article analyzes the recent Weimeng data‑loss incident, explains why recovery took 36 hours, highlights insider abuse, and offers a practical guide for small and large teams covering reliable backups, minimal‑privilege management, and cloud‑based disaster‑recovery solutions.

Database SecurityPrivilege Managementbackup strategy

0 likes · 9 min read

What the Weimeng Database Deletion Reveals About Backup and Permission Strategies

ITPUB

Feb 26, 2020 · Information Security

What We Learned from the Weimeng Data Deletion Disaster: Backup and Permission Strategies

The article analyzes the recent Weimeng database deletion incident, explains why recovery took 36 hours, and provides practical guidance on backup practices, minimal‑privilege management, and cloud‑based disaster recovery to prevent similar data loss in small and large organizations.

BackupDatabase SecurityOperations

0 likes · 9 min read

What We Learned from the Weimeng Data Deletion Disaster: Backup and Permission Strategies

Liangxu Linux

Feb 24, 2020 · Information Security

Understanding SQL Injection with SQLite: Real‑World Demo and Prevention Techniques

This article explains what SQL injection is, demonstrates a SQLite example that injects malicious code to drop a table, and then shows how to prevent such attacks using parameterized queries, input validation, and secure coding practices.

Database SecurityParameterized QueriesSQL injection

0 likes · 8 min read

Understanding SQL Injection with SQLite: Real‑World Demo and Prevention Techniques

Aikesheng Open Source Community

Jan 11, 2020 · Databases

Weekly Community Digest: MySQL, phpMyAdmin Releases, Access Vulnerability, DBLE & TXLE Updates

This weekly digest summarizes the latest MySQL community news, including a Microsoft Access security flaw, phpMyAdmin 4.9.4/5.0.1 releases, DBLE and TXLE middleware weekly reports, and a call for community feedback on DBLE, DTLE, and TXLE usage.

Access VulnerabilityCommunity UpdatesDatabase Security

0 likes · 6 min read

Weekly Community Digest: MySQL, phpMyAdmin Releases, Access Vulnerability, DBLE & TXLE Updates

Aikesheng Open Source Community

Jan 10, 2020 · Databases

Understanding Permissions, Blacklist, and Whitelist in DBLE

This article demonstrates how DBLE manages table-level DML permissions, global blacklist rules, and user‑IP whitelist controls, showing configuration steps, reload procedures, and the resulting effects on query execution and login access.

BlacklistDBLEDML

0 likes · 5 min read

Understanding Permissions, Blacklist, and Whitelist in DBLE

JD Tech Talk

Sep 5, 2019 · Information Security

Comprehensive Solution for Data Masking with Apache ShardingSphere (Part 2)

This article explains how to use Apache ShardingSphere's data‑masking (encryption) features to protect both new and existing MySQL/Oracle/PostgreSQL/SQLServer workloads, providing detailed YAML configurations, migration steps, advantages, applicable scenarios, and limitations for secure database operations.

Database SecurityEncrypt-JDBCShardingSphere

0 likes · 12 min read

Comprehensive Solution for Data Masking with Apache ShardingSphere (Part 2)

dbaplus Community

Aug 22, 2019 · Information Security

Transparent Data Masking with Apache ShardingSphere for New and Legacy Apps

Apache ShardingSphere provides a complete, transparent, low‑cost data masking solution that lets both new and existing applications encrypt sensitive fields without modifying business SQL, using Encrypt‑JDBC or Encrypt‑Proxy, configurable encryption rules, and step‑by‑step migration guidance for seamless, secure database transformations.

Database SecurityEncrypt-JDBCShardingSphere

0 likes · 19 min read

Transparent Data Masking with Apache ShardingSphere for New and Legacy Apps

Programmer DD

Jul 12, 2019 · Databases

Critical Redis Remote Code Execution Flaw (CNVD‑2019‑21763): Risks & Fixes

A high‑severity Redis remote command execution vulnerability (CNVD‑2019‑21763) discovered in July 2019 allows unauthenticated attackers to load malicious modules and execute arbitrary code, affecting Redis 2.x‑5.x, with no official patch yet and only temporary mitigation steps available.

CNVDDatabase SecurityRemote Code Execution

0 likes · 3 min read

Critical Redis Remote Code Execution Flaw (CNVD‑2019‑21763): Risks & Fixes

360 Tech Engineering

May 24, 2019 · Information Security

Understanding SQL Injection: Types, Techniques, and Defenses (OWASP Top 10)

This article explains the fundamentals of injection attacks, focuses on SQL injection as part of the OWASP Top 10, classifies injection vectors by data type, submission method, and impact, and provides concrete examples and defensive measures to protect web applications.

Blind SQL injectionDatabase SecurityInjection attacks

0 likes · 9 min read

Understanding SQL Injection: Types, Techniques, and Defenses (OWASP Top 10)

NetEase Game Operations Platform

Dec 14, 2018 · Information Security

Database Injection Attacks: Principles, Exploits, and Defense Strategies

This article explains why database injection remains a critical security threat, illustrates how attackers exploit vulnerable web applications using manual techniques and automated tools such as sqlmap, and provides comprehensive defensive measures spanning secure coding, database hardening, web‑server configuration, WAF deployment, and log‑analysis to protect sensitive data.

Database SecuritySQL injectionSQLMap

0 likes · 17 min read

Database Injection Attacks: Principles, Exploits, and Defense Strategies

ITPUB

Jan 3, 2018 · Information Security

How Ransomware Hijacks MySQL and What You Can Do to Stop It

The article explains how attackers compromise MySQL servers, create a WARNING table with ransom instructions demanding Bitcoin, and provides concrete SQL examples and four practical defense measures—including strong authentication, disabling public access, regular backups, and application hardening—to protect databases.

AuthenticationDatabase SecuritySQL injection

0 likes · 6 min read

How Ransomware Hijacks MySQL and What You Can Do to Stop It

Tencent Database Technology

Nov 29, 2017 · Information Security

Database Auditing: Concepts and Methods

Database auditing involves monitoring and recording database activities to detect and prevent security breaches, with methods ranging from application layer to kernel-level implementations across different database systems.

Database AuditingDatabase Securityinformation-security

0 likes · 17 min read

dbaplus Community

Nov 20, 2017 · Databases

Enabling IP Whitelisting in MongoDB 3.6: A Step‑by‑Step Guide

MongoDB 3.6 introduces authentication restrictions that let you enforce IP whitelists for both client and server connections, and this guide walks through creating a user, configuring bind_ip, restarting the server, and verifying the setup with concrete commands and screenshots.

Database SecurityIP whitelistMongoDB

0 likes · 5 min read

Enabling IP Whitelisting in MongoDB 3.6: A Step‑by‑Step Guide

UCloud Tech

Sep 5, 2017 · Information Security

How MongoDB Attacks Happen and What UCloud Does to Secure Your Data

The article explains why thousands of MongoDB instances are repeatedly compromised—due to password‑less logins and public exposure—details the inherent design flaws, and describes UCloud’s UDB MongoDB security measures such as mandatory authentication, VPC isolation, data backup, and performance‑friendly connection pooling.

AuthenticationDatabase SecurityMongoDB

0 likes · 6 min read

How MongoDB Attacks Happen and What UCloud Does to Secure Your Data

MaGe Linux Operations

Aug 22, 2017 · Databases

Essential DBA Playbook: Avoid Common MySQL Mistakes and Master Database Operations

This comprehensive guide shares a senior DBA's hard‑learned lessons on MySQL environment awareness, security, configuration, routine operations, architecture, business understanding, and mindset, offering practical tips and tools to prevent costly mistakes and improve operational confidence.

DBA Best PracticesDatabase AdministrationDatabase Security

0 likes · 18 min read

Essential DBA Playbook: Avoid Common MySQL Mistakes and Master Database Operations

21CTO

Jun 6, 2017 · Information Security

How to Search Encrypted Database Fields Securely with Blind Indexes

This article explains why deterministic encryption like ECB is unsafe for sensitive data, introduces nondeterministic authenticated encryption, and provides a practical blind‑index technique with PHP and SQL examples for searchable encryption of fields such as Social Security numbers.

Database SecurityPHPSQL

0 likes · 14 min read

How to Search Encrypted Database Fields Securely with Blind Indexes

dbaplus Community

Apr 4, 2017 · Information Security

Mastering Database Injection: Real‑World Attacks, Tools, and Defense Strategies

This comprehensive guide explains why database injection remains a critical security threat, illustrates real‑world attack techniques and toolchains, and provides layered defensive measures—from secure coding and DB‑proxy solutions to web‑server filtering, WAF deployment, and log‑analysis pipelines.

Database SecurityDefense StrategiesSQL injection

0 likes · 24 min read

Mastering Database Injection: Real‑World Attacks, Tools, and Defense Strategies

Java High-Performance Architecture

Mar 12, 2017 · Information Security

How Hackers Exploit mysqldump Backups to Execute System Commands

This article explains how attackers can abuse mysqldump to embed malicious SQL that runs system commands during import, demonstrates the exploit step‑by‑step, and provides practical mitigation measures such as using --skip-comments and revoking CREATE TABLE privileges.

Database SecuritySQL injectionbackup exploitation

0 likes · 4 min read

How Hackers Exploit mysqldump Backups to Execute System Commands

Tencent Cloud Developer

Mar 1, 2017 · Information Security

MySQL Ransomware Attacks: Security Analysis and Hardening Guide

MySQL has become a ransomware target because many servers expose the database to the internet with empty or weak passwords, so administrators should audit open ports, enforce strong authentication, restrict access via security groups or iptables, bind services to internal IPs, and avoid using root or high‑privilege accounts to harden MySQL, MongoDB, and Redis against compromise.

Database SecurityMongoDB hardeningMySQL security

0 likes · 8 min read

MySQL Ransomware Attacks: Security Analysis and Hardening Guide

ITPUB

Jan 16, 2017 · Information Security

Why Thousands of MongoDB Databases Were Wiped and Ransomed – What You Must Do

Thousands of MongoDB databases were erased and replaced with ransom demands, yet almost no victims recovered their data, highlighting widespread misconfigurations, public exposure on Shodan, and the urgent need for proper security hardening of MongoDB deployments.

Database SecurityMongoDBShodan

0 likes · 4 min read

Why Thousands of MongoDB Databases Were Wiped and Ransomed – What You Must Do

360 Zhihui Cloud Developer

Jan 10, 2017 · Information Security

8 Proven Strategies to Secure MongoDB and Prevent Ransomware

This article outlines eight practical measures—including changing the default port, blocking public access, running MongoDB under non‑root users, enabling authentication, tightening permissions, implementing robust backup and recovery plans, and encrypting sensitive data—to dramatically improve MongoDB security and keep ransomware at bay.

Database SecurityMongoDBRansomware Prevention

0 likes · 9 min read

8 Proven Strategies to Secure MongoDB and Prevent Ransomware

MaGe Linux Operations

Dec 7, 2016 · Databases

Secure MySQL/MariaDB Master‑Slave Replication with SSL: Step‑by‑Step Guide

This guide walks through securing MySQL/MariaDB master‑slave replication over a network using SSL encryption, covering environment setup, certificate generation, server configuration, replication testing, troubleshooting common errors, and ensuring only SSL‑based replication users can connect.

Database SecurityMariaDBmaster-slave replication

0 likes · 5 min read

Secure MySQL/MariaDB Master‑Slave Replication with SSL: Step‑by‑Step Guide

ITPUB

Nov 8, 2016 · Databases

Master MySQL User Permissions: Creation, Grants, and Best Practices

This guide explains how to create MySQL users, assign and manage privileges with GRANT, FLUSH, and REVOKE commands, and provides comprehensive best‑practice recommendations for naming, table design, indexing, and SQL optimization to secure and streamline database operations.

Database SecuritySQLmysql

0 likes · 15 min read

Master MySQL User Permissions: Creation, Grants, and Best Practices

360 Quality & Efficiency

Nov 1, 2016 · Information Security

Understanding SQL Injection Attacks and Defensive Techniques

The article reviews the author’s experience with security testing, explains the severe risks of SQL injection, demonstrates vulnerable server‑side code, and provides practical remediation methods such as input sanitization, type casting, and using prepared statements with PDO.

Database SecurityPDOSQL injection

0 likes · 5 min read

Understanding SQL Injection Attacks and Defensive Techniques

ITPUB

Aug 14, 2016 · Databases

14 Essential MySQL Security Practices to Protect Your Data

This guide outlines essential MySQL security measures—including removing default accounts, disabling unsafe LOCAL INFILE commands, enforcing strict user role permissions, encrypting sensitive data, ensuring data integrity through replication and backups, and standardizing operational practices—to protect database assets from irreversible breaches.

Database Securityaccess controldata integrity

0 likes · 6 min read

14 Essential MySQL Security Practices to Protect Your Data

ITPUB

Jul 21, 2016 · Information Security

How to Harden Oracle Database Security: Practical Hardening Steps

This guide outlines comprehensive Oracle database security hardening measures, covering system‑level protections, disaster‑recovery configuration, account privilege tightening, data access controls, network restrictions, password policies, audit settings, and patch management, with concrete commands and configuration examples for each step.

DataGuardDatabase SecurityHardening

0 likes · 19 min read

How to Harden Oracle Database Security: Practical Hardening Steps

dbaplus Community

Jun 26, 2016 · Databases

What’s New in MySQL 5.7? 16 Essential Features Every DBA Should Know

This article reviews the most important MySQL 5.7 enhancements—including stronger authentication, password expiration, account locking, simplified SSL, safer initialization, updated SQL_MODE, online DDL improvements, CJK full‑text support, temporary‑table optimizations, spatial data types, and NVM‑specific tweaks—providing practical guidance and configuration examples for DBAs.

5.7Database SecuritySQL Mode

0 likes · 11 min read

What’s New in MySQL 5.7? 16 Essential Features Every DBA Should Know

ITPUB

Jun 20, 2016 · Databases

Why Any MySQL User Can Access test* Databases and How to Fix It

This article explains that MySQL’s default mysql.db entries grant every user full privileges on databases named test or starting with test_, demonstrates the issue with a read‑only account, and shows how deleting those rows removes the unintended access.

Database SecurityPermissionsmysql

0 likes · 6 min read

Why Any MySQL User Can Access test* Databases and How to Fix It

ITPUB

Jun 15, 2016 · Information Security

How to Exploit and Defend Against MongoDB Injection Attacks

This article explains why MongoDB is chosen, demonstrates practical PHP injection techniques against MongoDB queries, shows how to enumerate databases and collections, and provides concrete defensive measures such as using implode(), addslashes() and regex sanitization to prevent attacks.

Database SecurityDefensive CodingMongoDB

0 likes · 5 min read

How to Exploit and Defend Against MongoDB Injection Attacks

ITPUB

Jun 3, 2016 · Databases

What Happens When You Revoke the DBA Role in Oracle? Key Impacts and Workarounds

This article explains how granting and revoking Oracle roles, especially the DBA role, affect permission activation timing, the immediate loss of UNLIMITED TABLESPACE rights, and practical steps to restore necessary tablespace access for application users.

DBADatabase SecurityGrant Revoke

0 likes · 4 min read

What Happens When You Revoke the DBA Role in Oracle? Key Impacts and Workarounds

Big Data and Microservices

Mar 28, 2016 · Information Security

Understanding Database SQL Injection: Types, Examples, and Defense Strategies

The article examines why databases are frequent targets of security breaches, explains the most common SQL injection vulnerability, categorizes injection paths, methods, and examples—including manipulation, code, function‑call, and buffer‑overflow attacks—then outlines practical defense measures such as input encryption, database firewalls, and patching.

Code InjectionDatabase SecurityOracle

0 likes · 14 min read

Understanding Database SQL Injection: Types, Examples, and Defense Strategies

dbaplus Community

Dec 7, 2015 · Information Security

How to Build Robust Database Security: Logical and Physical Protection Strategies

This article explains why protecting database‑stored sensitive data is critical, analyzes common attack vectors and breach statistics, and provides detailed logical and physical security measures—including user and permission management, auditing, encryption, disaster‑recovery planning, and Oracle replication technologies—to help organizations achieve comprehensive database protection.

Database SecurityOracleaccess control

0 likes · 20 min read

How to Build Robust Database Security: Logical and Physical Protection Strategies

ITPUB

Nov 23, 2015 · Databases

Essential MySQL Security Checklist: 14 Steps to Harden Your Database

To protect MySQL databases from unauthorized access and performance issues, this guide outlines fourteen essential security measures—including restricting remote access, regular backups, disabling default accounts, tightening user privileges, securing configuration files, and enabling logging—providing concrete commands and configuration snippets for robust protection.

BackupConfigurationDatabase Security

0 likes · 11 min read

Essential MySQL Security Checklist: 14 Steps to Harden Your Database