Re: Re: online db security measures

[simonis () myself com]

I wouldn't make the same assumption here.  It doesn't read like a tiered architecture.  It sounds to me like the users 
are doing a login directly to the database, perhaps to run queries interactively.  

IF this is the case, and Mr. Aslam is interested in proper infrastructure controls, the first I would advise would be 
to require all remote users to connect to that PIX via VPN, not directly from the Internet.  That simple step will 
eliminate a great deal of the risks.  

-Ds