In infinite wisdom Jerry Schwartz je...@gii.co.jp wrote:
Back when this was a day-to-day concern of mine, I used to check CERT's
website (the section now known as their Vulnerability Notes Database,
http://www.kb.cert.org/vuls).
If securing the database is your job, then you really need to
que les email peuvent facilement
être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité
pour le contenu fourni.
From: wult...@gmail.com
Date: Mon, 24 May 2010 13:45:35 -0700
Subject: Re: Security issues
To: mgai...@hotmail.com
CC: je...@gii.co.jp; mysql
Back when this was a day-to-day concern of mine, I used to check CERT's
website (the section now known as their Vulnerability Notes Database,
http://www.kb.cert.org/vuls). Unfortunately, I see that the last entry for
MySQL is from years ago.
Regards,
Jerry Schwartz
Global Information
-Original Message-
From: Rob Wultsch [mailto:wult...@gmail.com]
Sent: Saturday, May 22, 2010 11:52 AM
To: Martin Gainty
Cc: mysql@lists.mysql.com
Subject: Re: Security issues
On Sat, May 22, 2010 at 5:44 AM, Martin Gainty mgai...@hotmail.com wrote:
Good Morning Rob-
one vulnerability
On Mon, May 24, 2010 at 12:07 PM, Jerry Schwartz je...@gii.co.jp wrote:
-Original Message-
From: Rob Wultsch [mailto:wult...@gmail.com]
Sent: Saturday, May 22, 2010 11:52 AM
To: Martin Gainty
Cc: mysql@lists.mysql.com
Subject: Re: Security issues
On Sat, May 22, 2010 at 5:44 AM, Martin
, nous ne pouvons accepter aucune responsabilité
pour le contenu fourni.
From: wult...@gmail.com
Date: Mon, 24 May 2010 13:27:52 -0700
Subject: Re: Security issues
To: je...@gii.co.jp
CC: mgai...@hotmail.com; mysql@lists.mysql.com
On Mon, May 24, 2010 at 12:07 PM, Jerry Schwartz je
On Mon, May 24, 2010 at 1:42 PM, Martin Gainty mgai...@hotmail.com wrote:
Good Afternoon Rob-
if you're implementing either glassfish or weblogic webserver
your best fit solution would be Oracle Identity Manager
there are 'other' identity solutions such as RSA which are
1)far more complex
issues
To: mysql@lists.mysql.com
Given the rather serious recent bug fixes I have been thinking a good
bit about security. Does MySQL AB/Sun/Oracle maintain a page similar
to http://www.postgresql.org/support/security.html which lists
security issues and what releases they effected?
--
Rob
On Sat, May 22, 2010 at 5:44 AM, Martin Gainty mgai...@hotmail.com wrote:
Good Morning Rob-
one vulnerability (with UDFs)
http://dev.mysql.com/tech-resources/articles/security_alert.html
a manager considering a enterprise-wide security solution may want
to consider Oracle Identity Manager
You could use CVE, Postgre's security page doesn't seem to sync with their
CVE entries, even though they reference CVE entries on their comprehensive
security page.
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=postgresql
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=mysql
JW
On Sat, May
Given the rather serious recent bug fixes I have been thinking a good
bit about security. Does MySQL AB/Sun/Oracle maintain a page similar
to http://www.postgresql.org/support/security.html which lists
security issues and what releases they effected?
--
Rob Wultsch
wult...@gmail.com
--
MySQL
I wanted to run by everyone what I am doing in my application to help
prevent someone from inadvertently or intensionally breaking the system
and compromising security. First some quick background. This is an
Apache/php/mysql project. It is a wish list database where people can
create an
On Wed, 2004-01-14 at 13:32, Chris W wrote:
Are there many php or mysql configuration considerations for making the
site secure? I have already done the obvious with my sql and set up the
grant tables with passwords for all users and removed the [EMAIL PROTECTED] user.
Give the MySQL user
cwilli14,
Tuesday, December 03, 2002, 10:03:06 PM, you wrote:
cardrdc This also does not enable me to upload a data file. My resulting SQL
cardrdc statement reads:
cardrdc LOAD DATA LOCAL '/tmp/phpgPhl51' INTO TABLE test FIELDS TERMINATED BY ','
cardrdc ENCLOSED BY '' ESCAPED BY '\\' LINES
Chris,
Tuesday, December 03, 2002, 6:58:39 AM, you wrote:
CW I developed a PHP application where users can update a mySQL table using
CW LOAD DATA. Recently I installed this application on another web server where
CW the File Permissions have been set such that this method of uploading data
CW is
5:50 AM
Subject: re: Security issues with LOAD DATA
Chris,
Tuesday, December 03, 2002, 6:58:39 AM, you wrote:
CW I developed a PHP application where users can update a mySQL table
using
CW LOAD DATA. Recently I installed this application on another web server
where
CW the File Permissions
I developed a PHP application where users can update a mySQL table using
LOAD DATA. Recently I installed this application on another web server where
the File Permissions have been set such that this method of uploading data
is no longer valid. Since phpMyAdmin is not an option I am trying to find
I developed a PHP application where users can update a mySQL table using
LOAD DATA. Recently I installed this application on another web server where
the File Permissions have been set such that this method of uploading data
is no longer valid. Since phpMyAdmin is not an option I am trying to find
18 matches
Mail list logo