Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Weakness of static addr & MySQL database

From: jkinney () TELLER PHYSICS EMORY EDU (Jim Kinney)
Date: Thu, 20 Apr 2000 14:07:06 -0400

think of it this way:

A static IP implies a specific machine. A specific machine can be placed
behind a physically locked door. Only certain people have the keys to that
door.  So that adds another layer of security to the admin portion of the
database.

I require that the admin be on the console of the database machine. This
prevents any access for dropping databases from over the wire. I can submit
admin jobs as perl scripts than run from cron using this. Also, I can ssh into
the machine and admin from remote. The key thing is to limit password exposure
onthe wire.

JimK

"Tompkins, William A" wrote:


Could you please provide an opinion on the requirement for static addresses
and the MySQL database.  Assuming that the sysadmin meets all of the other
security requirements, what part is the static address assignment going to
play in the security of access?

Regards,

William Tompkins, CISSP, CRP, CBCP
Manager of Information Security
Univ. of Tx Health Science Center at San Antonio
210-567-2308


--
Jim Kinney              Educational Technology Specialist
Physics Department      404-727-4734
Emory University        jkinney () teller physics emory edu
Previous By Date Next
Previous By Thread Next

Current thread: