Hi MySQL Community,
Greetings !
I have a query regarding encryption-at-rest feature in MySQL Community Edition -
What i understand is that Encryption-at-rest is supported from MySQL-5.7.11
community edition and only on file-per-table basis which means encryption at
table-level can be
ssword (or part of it) to get the info from these 3
tables.
The password itself for the user should be stored as a hash in
database (use bcrypt). All decryption / encryption should be done in
your application.
The only disadvantage is you won't be able to read user's data if you
don
AES encryption is weak because it is too easy for the hacker to get the
passphrase.
If you can somehow hide the passphrase behind 'root', you can at least prevent
a non-sudo user from seeing the data. Your web server starts as root, then
degrades itself before taking requests. If i
Which is the best way ?
I see you can do it from PHP itself
http://coding.smashingmagazine.com/2012/05/20/replicating-mysql-aes-encryption-methods-with-php/
or can use mysql AES?
http://security.stackexchange.com/questions/16473/how-do-i-protect-user-data-at-rest
>From what I understand
ant to store 3 tables that have
> email address, ip address, and personal info.
>
> On Sun, Feb 3, 2013 at 12:57 PM, Reindl Harald wrote:
>>
>>
>> Am 03.02.2013 18:52, schrieb Mike Franon:
>>> Hi,
>>>
>>> I was wondering what type of encryptio
to store 3 tables that have
email address, ip address, and personal info.
On Sun, Feb 3, 2013 at 12:57 PM, Reindl Harald wrote:
>
>
> Am 03.02.2013 18:52, schrieb Mike Franon:
>> Hi,
>>
>> I was wondering what type of encryption for linux would you recommend
>>
Am 03.02.2013 18:52, schrieb Mike Franon:
> Hi,
>
> I was wondering what type of encryption for linux would you recommend
> to encrypt the database files on the OS level? I had a hard time
> starting the database after I moved it to a partiton with encryptFS
>
> I only ne
ysql.com/doc/refman/5.1/en/encryption-functions.html#function_sha1
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/mysql?unsub=arch...@jab.org
>>
>>> On Fri, Sep 17, 2010 at 1:22 PM, Tompkins Neil <
>>> neil.tompk...@googlemail.com> wrote:
>>>
>>>> Hi,
>>>>
>>>> I need to encrypt a string like 'hello world', using a passkey. But I
>>>> also
>>>&
using the same passkey. I
> noticed in MySQL there are functions like
> AES_ENCRYPT()<
> http://dev.mysql.com/doc/refman/5.1/en/encryption-functions.html#function_aes-encrypt
> >
>
> However, I need the encrypted phrase to be returned as a string, since it
> will be pass
Hi,
I need to encrypt a string like 'hello world', using a passkey. But I also
need to be able to decrypt the encrypted phrase using the same passkey. I
noticed in MySQL there are functions like
AES_ENCRYPT()<http://dev.mysql.com/doc/refman/5.1/en/encryption-functions.html#functio
On Sun, Mar 21, 2010 at 9:49 PM, mos wrote:
> At 03:21 PM 3/21/2010, John Daisley wrote:
>
>> Mike,
>>
>> Encrypted filesystems can seriously impact performance of MySQL.
>>
>> Its an entirely different issue to MySQL encryption but one would hope
>&g
At 03:21 PM 3/21/2010, John Daisley wrote:
Mike,
Encrypted filesystems can seriously impact performance of MySQL.
Its an entirely different issue to MySQL encryption but one would hope
that, if you are going to go to all the trouble of using two part keys and
the strongest encryption
Mike,
Encrypted filesystems can seriously impact performance of MySQL.
Its an entirely different issue to MySQL encryption but one would hope that, if
you are going to go to all the trouble of using two part keys and the strongest
encryption available in your database, you would also take as
to a few people in
your company. Never trust the internet service provider to be your only
means to protect your data or your drives.
Mike
-Original Message-
From: Jim
Sent: Friday, March 19, 2010 4:22 PM
To: John Daisley ; mysql@lists.mysql.com
Subject: Re: MySQL Encryption
T
-Original Message-
From: Jim
Sent: Friday, March 19, 2010 4:22 PM
To: John Daisley ; mysql@lists.mysql.com
Subject: Re: MySQL Encryption
Thanks for the reply, John.
What you are describing seems to be the approach I've seen on the few
places I've seen this topic discusse
passwords I'd recommend SHA256 which is one way encryption. Or are you
looking to encrypt more sensitive information like card holder data ?
Regards
Neil
On Fri, Mar 19, 2010 at 4:22 PM, Jim mailto:j...@lowcarbfriends.com>> wrote:
Thanks for the reply, John.
What you are de
Hi
What sort of information are you looking to encrypt ? If it is for user
passwords I'd recommend SHA256 which is one way encryption. Or are you
looking to encrypt more sensitive information like card holder data ?
Regards
Neil
On Fri, Mar 19, 2010 at 4:22 PM, Jim wrote:
> Thanks
e
security to prevent unauthorised access".
Thanks,
Jim
On 3/19/2010 6:39 AM, John Daisley wrote:
Jim,
I tend to derive a key based on a separate character string and the
contents of the data in the same or a related table. This means each row
has a unique encryption key and you never hav
Jim,
I tend to derive a key based on a separate character string and the contents
of the data in the same or a related table. This means each row has a unique
encryption key and you never have to have the whole key stored somewhere
(you don't even know it :p ). Biggest advantage to this is s
In terms of encryption functions AES_DECRYPT and AES_ENCRYPT, can anyone
point to any good links or offer any suggestions in terms of best
practices on storage of the associated symmetric key? I've found very
little information on this when searching.
Does MySQL offer any asymm
You might consider a full disk/volume/partition encryption maybe?
http://truecrypt.com/
I use this for my private files and it's awesome. Cross platform and can do
virtual partitions on an actual physical drive.
> -Original Message-
> From: philip [mailto:phi...@livenet.ac.
On Mon, 24 Aug 2009, Mike Scully wrote:
> Hello, all.
> =20
> Can any of you share with me the names of any third-party tools or
> appliances that you are using to encrypt your MySQL databases? I am
> doing a search and would like to narrow down the initial search list.
> Thanks!
> =20
> Mike
I
Hello, all.
Can any of you share with me the names of any third-party tools or
appliances that you are using to encrypt your MySQL databases? I am
doing a search and would like to narrow down the initial search list.
Thanks!
Mike
At 2:41 PM -0800 11/21/08, Zakai Kinan wrote:
I searched google and the archives of this list, but I am not
cleared about the support of table encryption in mysql. Can someone
clarify for me?
thanks,
Well, as far as I know, there isn't any built-in full table
encryption implemented
I searched google and the archives of this list, but I am not cleared about the
support of table encryption in mysql. Can someone clarify for me?
thanks,
ZK
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com
I have a column in a table that was turned into an cp1251_general_ci
for a type of encryption. Question is, how do I unencrypt it?
Thanks
Steve
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
n bum-rush my security guards, break past the bullet-proof door
walls, and rip out my hard drives through the locked rack cabinet, I want to
ensure my data is safe.
Also, I want to make it so that you cannot even LOOK at the data unless you
know the correct encryption keys.
I currently emplo
Hello,
Have you taken a look at:
http://dev.mysql.com/doc/refman/5.0/en/encryption-functions.html
That might give you a good start.
Thanks,
Jimmy Guerrero
Sr Product Manager
MySQL, Inc
> -Original Message-
> From: Cummings, Shawn (GNAPs) [mailto:[EMAIL PROTECTED]
> Sen
Is there a simple way to encrypted data as it's being stored in a
table? And then easily decrypted when it's queried?
Sample syntaxs if available - thanks in advance.
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[E
On Oct 4, 2005, at 4:34 PM, Jeff Pflueger wrote:
Where might I find the key so that I can send it along to them? any
suggestions on this?
The password is what you need to send. The encryption and decryption
functions generate a key from the password. Internally, the key that
the AES
Thanks for any help
>
> [EMAIL PROTECTED] wrote:
>
> >
> >
> > Jeff Pflueger <[EMAIL PROTECTED]> wrote on 10/03/2005 03:46:09 PM:
> >
> > > Hi,
> > > I need to encrypt data as I insert it into a mySQL database.
> > > The data will th
Anybody have an idea why I might be getting the following message:
ERROR 1064 (0): You have an error in your SQL syntax near
'('hello','password')' at line 1
When I type this in at the command line:
SELECT AES_ENCRYPT('hello','password');
Version info: mysql Ver 14.7 Distrib 4.1.12,
3.23.58 for RedHat Linux.
>
> I cannot find a single encryption function in the documentation that
> seems to not create a syntax error for the version of mySQL I am using.
>
> I am also concerned because whatever encryption I am using needs to be
> decrypted outside of mySQL.
>
Hi,
I need to encrypt data as I insert it into a mySQL database.
The data will then be sent as a text file to another institution to be
decrypted.
I am using mySQL version 11.18 Distrib 3.23.58 for RedHat Linux.
I cannot find a single encryption function in the documentation that
seems to not
u
never saw the plain text password, it would have to get to that stage
in order to be put through the MD5 algorithm).
Okay, that makes the situation very clear. I now understand that MySQL
can not manipulate encrypted passwords for the purpose of changing
encryption methods. While this is not
Dave wrote:
[snip]
I believe I will need to use the new password hashing algorithm, because
using the old one would require me to reconfigure the PHP code for the
forum, which would be a level of complexity beyond my capabilities.
So I now understand that I can not decrypt the passwords into
It did change between MySQL 3.2 and 4.1. You need the old-passwords
configuration directive, it is in the MySQL manual at dev.mysql.com.
Thank you. I believe the old-passwords configuration has already been
set by my web host.
You can't decrypt the password fields. That's the point of *one
Dave wrote:
[snip]
The current members tables uses the default PASSWORD encryption built
into MySQL. Although my current MySQL version is 4.1.3, I believe this
is the same password encryption that was used in MySQL 3.2. The user
data was created in an earlier version of MySQL, and later
to take my current members table and move the data into
the new forum members table.
The current members tables uses the default PASSWORD encryption
built into MySQL. Although my current MySQL version is 4.1.3, I believe
this is the same password encryption that was used in MySQL 3.2. The
use
From: "Martin"
> For my tests I used the blob field (not varchar or anything else), but
> compared to your tests, I didn't use MySQL 5.0.6 (as it's still a beta)
but
> I used MySQL 4.1. Maybe that's part of the problem, although I'm not sure.
FWIW: I tested it on 4.0.23-standard, with the same re
ite strange, but so far I solved it by limiting the number
of characters by 256 in my application, but ofcourse that's not ideal...
Thanks,
Martin
-Oorspronkelijk bericht-
Van: Gleb Paharenko [mailto:[EMAIL PROTECTED]
Verzonden: woensdag 15 juni 2005 14:31
Aan: mysql@lists.mysql.com
l> show create table test.a\G;
*** 1. row ***
Table: a
Create Table: CREATE TABLE `a` (
`a` blob
) ENGINE=MyISAM DEFAULT CHARSET=cp1251
COLLATE=cp1251_bi
mos wrote:
At 04:32 AM 6/15/2005, you wrote:
Hi,
I think of using AES Encryption for some time now, because it seems
to be
the most secure encryption method in MySQL at this moment
and table
encryption of some sort is not possible.
I really wish MySQL would support table wide
> If the government passes a law to
> force this data to be encrypted,
The last thing I want is the Government mandating encryption for anyone. If
you want a law to help here, I'd rather there be a law forcing companies to
disclose which encryption scheme they're using, an
At 04:32 AM 6/15/2005, you wrote:
Hi,
I think of using AES Encryption for some time now, because it seems to be
the most secure encryption method in MySQL at this moment
and table
encryption of some sort is not possible.
I really wish MySQL would support table wide encryption because more
Hi,
I think of using AES Encryption for some time now, because it seems to be
the most secure encryption method in MySQL at this moment and table
encryption of some sort is not possible. In the documentation I read BLOB
fields are recommended for storage of data with AES_Encrypt, otherwise you
On Tuesday, March 22, 2005 07:15, symbulos partners wrote:
> Dear friends,
>
> thanks for the link to the dev manual page on encryption function.
>
> Which encryption is more secure (strongest)
> AES
> DES
> SHA
> ?
Are you using this for password storage or encr
Dear friends,
thanks for the link to the dev manual page on encryption function.
Which encryption is more secure (strongest)
AES
DES
SHA
?
I would have said AES, but after reading the manual chapters on DES, SHA I am
not s(ec)ure any more.
By the way, I did not understand if the bug
http
>
> Nevertheless you should be aware that the information is travelling
> unencrypted between the mysql client and server unless you're using SSL
> tunneling or similar techniques.
>
Sorry, since mysql 4.0, SSL is of course possible.
(I'm still using 3.23)
bh
pgp7GAhKO8td6.pgp
Description: PGP
On Friday 11 February 2005 11:52, love wrote:
> There is not some thing secret to be stored but the idea is to encrypt
> customer credit card information so it is not avilable to unauthorized
> users but key cannot be stored in source code as any body who can hack
> databases to pull out the inform
19:00, love wrote:
> Has any body implemented Aes encryption while storing critical data in
> mysql? I want to know the logic you are implementing to store your
> passwords to encrypt/decrypt data.
>
> Love Kumar
>
> Love Kumar wrote:
I think this question could not be an
Hello.
If you mentioned an AES_ENCRYPT(), see:
http://dev.mysql.com/doc/mysql/en/encryption-functions.html
You specify your password in your queries. The database doesn't contains
the password by itself. Your application can ask a user for a password
each time, and you don'
On Thursday 10 February 2005 19:00, love wrote:
> Has any body implemented Aes encryption while storing critical data in
> mysql? I want to know the logic you are implementing to store your
> passwords to encrypt/decrypt data.
>
> Love Kumar
>
> Love Kumar wrote:
I think th
Has any body implemented Aes encryption while storing critical data in
mysql? I want to know the logic you are implementing to store your
passwords to encrypt/decrypt data.
Love Kumar
Love Kumar wrote:
Hi,
Aes Encryption requires a password (key) to access data, now where do
we store this key
Hi,
Aes Encryption requires a password (key) to access data, now where do
we store this key? with the source code ? or in seperate database ?
because any body who has the access to souce code can view the critical
info or even if you store passwords in another database then it is not a
big
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am interested in feedback, advice from anyone who has changed the
AES_BLOCK_SIZE (default 16 bytes, for 128 bit) to 32 bytes, or 256 bit
encryption as mentioned on:
http://dev.mysql.com/doc/mysql/en/Encryption_functions.html
I am only attempting to
On May 21, 2004, at 5:19 AM, Victor Medina wrote:
| On May 21, 2004, at 1:54 AM, [EMAIL PROTECTED] wrote:
|
|> What level of Encryption does MySQL have? I cannot find much
security
|> information from mysql.com.
||
| http://dev.mysql.com/doc/mysql/en/Encryption_functions.html
|
Any level
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greg Willits wrote:
| On May 21, 2004, at 1:54 AM, [EMAIL PROTECTED] wrote:
|
|> What level of Encryption does MySQL have? I cannot find much security
|> information from mysql.com.
|
|
| http://dev.mysql.com/doc/mysql/en/Encryption_function
On May 21, 2004, at 1:54 AM, [EMAIL PROTECTED] wrote:
What level of Encryption does MySQL have? I cannot find much security
information from mysql.com.
http://dev.mysql.com/doc/mysql/en/Encryption_functions.html
-- greg willits
--
MySQL General Mailing List
For list archives: http
Dear Sir,
What level of Encryption does MySQL have? I cannot find much security
information from mysql.com.
Thanks,
Joseph
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
Hi,
That's what i thought... but it makes no sense to me... it should be a way
to store data safely using MySQL encryption functions...
In the meantime... what are you using for encryption?
FBR
"Matt W" <[EMAIL PROTECTED]>
22/02/2004 08:24 p.m.
To
<[EMAIL PROTEC
Hi,
- Original Message -
From: <[EMAIL PROTECTED]>
Sent: Sunday, February 22, 2004 3:18 PM
Subject: Re: Encryption Issue
> According to documentation there is a "query log" wich logs
established
> connections and executed queries, also there is the "bi
ENCRYPT('information', 'key')
Any one who looks into the log file will be able to see the query, the
information and the key, and all my information would be compromised... am
i wrong?
Regards
FBR
Frederic Wenzel <[EMAIL PROTECTED]>
22/02/2004 05:21 a.m.
To
[EMA
[EMAIL PROTECTED] wrote:
I would like to encrypt informaton in MySQL DB using the "AES_ENCRYPT"
function, but what if someone looks into the log files?
What ever may be logged by the mysql daemon - I can't believe it loggs
passwords or the stored data itself. So why do you think so?
bye
Fred
I would like to encrypt informaton in MySQL DB using the "AES_ENCRYPT"
function, but what if someone looks into the log files?
Unfortunately, i cannot prevent access to that computer...
FBR
At 8:50 -0800 11/7/03, Herb Rubin wrote:
Paul,
TINYBLOB does seem to hold the value properly.
I can't use a TINYBLOB in a primary key. Is this not allowed?
The ALTER statement complains that I am using a column without a length
specified.
Specify a length, then. :-)
http://www.mysql.com/doc/en/I
n VARCHAR and see what
happens.
we are on 4.0.14
Herb
At 14:03 -0800 11/6/03, Herb Rubin wrote:
Hi,
I am trying to use aes_encrypt and I get a NULL value with a
specific string:
INSERT INTO test SET
`id` = AES_ENCRYPT('551850040',
'0bf251c9aaf007deaf1143ca1492b561
Hi William,
- Original Message -
From: "William R. Mussatto"
Sent: Friday, November 07, 2003 12:49 PM
Subject: Re: aes encryption bug
> Paul DuBois said:
> >
> > Okay, I investigated this further and I believe I know the cause of
the
> > problem. The so
t: Re: aes encryption bug
Paul,
TINYBLOB does seem to hold the value properly.
I can't use a TINYBLOB in a primary key. Is this not allowed?
The ALTER statement complains that I am using a column without a length
specified.
Herb
On Thu, 2003-11-06 at 19:24, Paul DuBois wrote:
> At 15:29 -
-
> >------+
> >> 1 row in set (0.07 sec)
> >>
> >> Are you reporting that you get NULL only in the context of inserting
> >> and retrieving the value from the id column?
&g
+
>>> | 551850040
>>> |
>>> +-
>>------+
>>> 1 row in set (0.07 sec)
>>>
>>> Are you reporting t
> >--+
> >> | 551850040
> >> |
> >> +-
> >------+
> >> 1 row in set (0.07 sec)
> >>
> >> Are you rep
rb Rubin wrote:
Hi,
I am trying to use aes_encrypt and I get a NULL value with a specific
string:
INSERT INTO test SET
`id` = AES_ENCRYPT('551850040', '0bf251c9aaf007deaf1143ca1492b561');
my field 'id' is VARCHAR(16) NOT NULL
If I change the value or the encryption string it works. But this
comb
HAR and see what
> happens.
>
>
>>
>>we are on 4.0.14
>>Herb
>>
>>
>>> At 14:03 -0800 11/6/03, Herb Rubin wrote:
>>>>Hi,
>>>>
>>>>I am trying to use aes_encrypt and I get a NULL value with a specific
>>>>string:
>>>&
= AES_ENCRYPT('551850040', '0bf251c9aaf007deaf1143ca1492b561');
my field 'id' is VARCHAR(16) NOT NULL
If I change the value or the encryption string it works. But this
combination turns out to be nul
At 14:03 -0800 11/6/03, Herb Rubin wrote:
Hi,
I am trying to use aes_encrypt and I get a NULL value with a specific
string:
INSERT INTO test SET
`id` = AES_ENCRYPT('551850040', '0bf251c9aaf007deaf1143ca1492b561');
my field 'id' is VARCHAR(16) NOT NULL
If I chan
Hi,
I am trying to use aes_encrypt and I get a NULL value with a specific
string:
INSERT INTO test SET
`id` = AES_ENCRYPT('551850040', '0bf251c9aaf007deaf1143ca1492b561');
my field 'id' is VARCHAR(16) NOT NULL
If I change the value or the encryption string i
Thanks. I was thinking about using stunnel.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 23, 2003 3:41 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: ODBC Encryption?
What you've seen is what you get. None.
Try tunn
What you've seen is what you get. None.
Try tunneling through SSH. Try this link to learn more:
http://www.cs.kuleuven.ac.be/system/security/ssh/tunnel.shtml
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTE
Greetings. Can anyone tell me what type of encryption is used when sending
mysql username/password through ODBC. I see that the data and username are
plaintext.
Thanks!
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com
On Thu, Aug 07, 2003 at 10:32:19AM -0700, K. Wright - DataAnywhere wrote:
> If logging is turned on, is there a way to disable it for a given query?
>
> IE. If I query --> select AES_ENCRYPT("This is very important data",
> "lessthansecretkey");
>
> Then my key and the value I'm trying to encr
If logging is turned on, is there a way to disable it for a given query?
IE. If I query --> select AES_ENCRYPT("This is very important data",
"lessthansecretkey");
Then my key and the value I'm trying to encrypt is visible in the log
files.
KJW
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
John Jolet wrote:
> I need to find out if it's possible to do two things with mysql.
> The first is external authentication, preferably with kerberos5, but
PAM will work as well.
No.
> Second, encrypting the data stream. Specifically with jdbc conn
I need to find out if it's possible to do two things with mysql. The first is
external authentication, preferably with kerberos5, but PAM will work as well.
Second, encrypting the data stream. Specifically with jdbc connections.
--
MySQL General Mailing List
For list archives: http://lists.my
All;
Does anyone know of a more secure way than storing the username and password
to the database connection within the odbc.ini ? We are using PHP on one
server connecting to a MySQL 4.0 database ?
Thanks
gt; Sent: Wednesday, June 25, 2003 3:11 AM
> To: Daevid Vincent
> Cc: [EMAIL PROTECTED]
> Subject: RE: AES 256-Bit Encryption and /etc/my.cnf
>
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi,
>
> On Tue, 24 Jun 2003, Daevid Vincent wrote:
>
to consider this going forward.
Thanks for your suggestion, which I will forward to the developer in
charge of that part of the code. However, I am not sure if we can fulfil
this request. Enabling 256 bit encryption by default may pose legal
problems (export regulations), but IANAL. We shall se
ay, June 24, 2003 2:55 AM
> To: Herb Wartens
> Cc: [EMAIL PROTECTED]
> Subject: Re: AES 256-Bit Encryption
>
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Wed, 11 Jun 2003, Herb Wartens wrote:
>
> > Does anyone know where to find the 256-Bit pat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 11 Jun 2003, Herb Wartens wrote:
> Does anyone know where to find the 256-Bit patch for AES encryption?
No patch needed - just edit include/my_aes.h and change the AES_KEY_LENGTH
define to the desired value (it defaults to 128 bits).
Does anyone know where to find the 256-Bit patch for AES encryption?
Thanks...=)
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi, all --
I have, with the generous help of Michael Babcock, worked out what I
think is a reasonable way to protect the credit card numbers in my
database from improper access. Basically, only the server (better yet,
some other server) can access th
le.dat bs=1k count=1024
mount -oloop bigfile.dat /var/bigfile
... store files in /var/bigfile (Virtual loop interface for disk subsystem).
You can do the same thing but use encryption on the device so the 'real' data
stored in bigfile.dat is encrypted, but /var/bigfile isn't.
--
M
MO, #1 and #2 should be solved by physically restricting untrusted users
from the db machine, and also from the middle layer ("application server",
web server or similar). The client sw should only have access to your data
through a API in the application layer. The level of security, need
-Original Message-
| From: Roger Baklund [mailto:[EMAIL PROTECTED]]
| Sent: Tuesday, 19 November 2002 1:15 AM
| To: [EMAIL PROTECTED]
| Cc: Alexandre Aguiar; Fraser Stuart
| Subject: Re: Mysql & Encryption
|
|
| * Alexandre Aguiar
| > On 14 Nov 2002 Fraser Stuart shaped the elec
: Mike Hillyer [mailto:[EMAIL PROTECTED]]
> Sent: Monday, November 18, 2002 2:24 PM
> To: Muir, Michael (OTS-EDH); 'Andy Eastham'; Mysql@Lists. Mysql. Com
> Subject: RE: Mysql & Encryption
>
>
> As far as I know you have to have a shell account to use ssh
> tunnel
Mysql. Com
Subject: RE: Mysql & Encryption
PuTTY is a nice freeware SSH client.
http://www.chiark.greenend.org.uk/~sgtatham/putty/
-mike
> -Original Message-
> From: Andy Eastham [mailto:[EMAIL PROTECTED]]
> Sent: Monday, November 18, 2002 8:39 AM
> To: Mysql@L
PuTTY is a nice freeware SSH client.
http://www.chiark.greenend.org.uk/~sgtatham/putty/
-mike
> -Original Message-
> From: Andy Eastham [mailto:[EMAIL PROTECTED]]
> Sent: Monday, November 18, 2002 8:39 AM
> To: Mysql@Lists. Mysql. Com
> Subject: RE: Mys
r
> > > On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
> > > about [Mysql & Encryption]
> > >
> > > > We are about to embark on a project that requires data encryption -
> > > > mainly to stop sensitive information bei
At 08:15 AM 11/18/2002, you wrote:
* Alexandre Aguiar
> On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
> about [Mysql & Encryption]
>
> > We are about to embark on a project that requires data encryption -
> > mainly to stop sensitive information
1 - 100 of 182 matches
Mail list logo