Dont trust anything, The more secure you can be the better, What
happens if you have not patched a single server (maybe you are
testing) then someone gets into it and then has unrestricted access to
all the DB's..
Never trust your own users even, If the data is worth money to you it
is worth more
Hi all,
I'm looking to get an unbiased opinion of two possible methods for
controlling access to database servers.
Here are the specs:
* 6 database servers, all firewalled off to the outside world, but
accessible to each other on port 3306 unrestricted
* 10 web servers total, but only half
