It sounds to me that you need only 1 database on a secure server, behind a secured website. Each data entry operator (the members of your family?) would need to either access data entry pages on your site (via HTTPS or SSH or some other encrypted channel) or the database directly through SSH. If you want each person to have a local copy of everyone's data, then you could replicate that database to each location.
I guess the absolute security of your data would depend on how many methods you have available to you and your family to get at the data. Each method represents a potential security risk and should be evaluated as such. There are several logs in MySQL (see http://dev.mysql.com/doc/mysql/en/Log_Files.html) A multiphase commit (all changes must be reviewed and approved before being committed) implies that you require all data access to happen ONLY though your PHP code. This practically guarantees that you will have a central "master" database. Secure replication is possible. Use SSH, or VPN if it is available, or both. SSH is supported by MySQL. For a good starting point, please read: http://dev.mysql.com/doc/mysql/en/Security_against_attack.html Regards, Shawn Green Database Administrator Unimin Corporation - Spruce Pine "Sarah Tanembaum" <[EMAIL PROTECTED] To: [EMAIL PROTECTED] ahoo.com> cc: [EMAIL PROTECTED], [EMAIL PROTECTED] Sent by: news Fax to: <[EMAIL PROTECTED] Subject: Secure Database Systems rg> 07/08/2004 12:19 PM I was wondering if it is possible to create a secure database system using MySQL/PHP combination? I have the following in mind: I wanted to store all my( and my brothers and sisters) important document information such as birth certificate, SSN, passport number, travel documents, insurance(car, home, etc) document, and other important documents imagined in the database. The data will be entered either manually and/or scanned(with OCR). I need to be able to search on all the fields in the database. We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I maintained. The data should be synchronize/replicate between those computers. Well, so far it is easy, isn't it? Here's my question: a) How can I make sure that it secure so only authorized person can modify/add/delete the information? Beside transaction logs, are there any other method to trace any transaction(kind of paper trail)? Assuming there are 3 step process to one enter the info e.g: - One who enter the info (me) - One who verify the info(the owner of info) - One who verify and then commit the change! How can I implement such a process in MySQL and/or PHP or any other web language? b) How can I make sure that no one can tap the info while we are entering the data in the computer? (our family are scattered within US and Canada) c) Is it possible to securely synchronize/replicate between our computers using VPN? Does MySQL has this functionality by default? d) Other secure method that I have not yet mentioned. Anyone has good ideas on how to implement such a systems? Thanks -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
