msquared wrote:
>
> I'm working for a company that has a paranoid client, and the client wants
> their database to be 'secure'.
>
> By 'secure' they mean that even if someone gains root access on the
> server, the data in the database can't be compromised (obtained).
>
> I can think of a couple of ways to do this, but I don't know if they're
> practical.
>
> The first is to have MySQL store the tables and such in an encrypted
> fashion, at the file layer.
>
>
> Can anyone else offer any alternative suggestions, or some guidance?
>
Most standard way is prorably having encrypted filesystems support in
kernel (http://www.linuxi.org) and then having MySQL databases on it. I
do not believe into too big security when intruder already have root but
encryption will anyway help.
--
MySQL Development Team
__ ___ ___ ____ __
/ |/ /_ __/ __/ __ \/ / Tonu Samuel <[EMAIL PROTECTED]>
/ /|_/ / // /\ \/ /_/ / /__ MySQL AB, http://www.mysql.com/
/_/ /_/\_, /___/\___\_\___/ Tallinn, Estonia
<___/
---------------------------------------------------------------------
Before posting, please check:
http://www.mysql.com/manual.php (the manual)
http://lists.mysql.com/ (the list archive)
To request this thread, e-mail <[EMAIL PROTECTED]>
To unsubscribe, e-mail <[EMAIL PROTECTED]>
Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php