Planet MySQL Planet MySQL: Meta Deutsch Español Français Italiano 日本語 Русский Português 中文
Showing entries 1 to 4

Displaying posts with tag: Publications (reset)

GreenSQLOpenSource Performance Test
+0 Vote Up -0Vote Down

GreenSQLOpenSource is becoming a popular product. We have received a number of inquiries from our users asking about the database firewall performance. In addition, in the new version, we have incorporated numerous optimization patches. In order to get a feel of the gap, we decided to conduct several performance tests and publish their results.

As you probably know, GreenSQLOpenSource works as an SQL proxy. As a result, the system adds additional layer to your existing application infrastructure. In addition, from the network point of view, GreenSQLOpenSource db firewall creates another network socket when connecting to the genuine MySQL server. All this …

  [Read more...]
Backdoor webserver using MySQL SQL Injection
+0 Vote Up -0Vote Down

MySQL Database is a great product used by thousand of websites. Various web applications use MySQL as their default database. Some of these applications are written with security in mind, and some are not. In this article, I would like to show you how you can exploit SQL injection in order to gain almost full control over your webserver.

Most people know that SQL injection allows attackers to retrieve database records, pass login screens, change database content, through the creation of new administrative users. MySQL does not have a built-in command to execute shell commands, like Microsoft SQL server. I will show you how to run arbitrary …

  [Read more...]
Design and Implementation of a Workflow Engine
+0 Vote Up -0Vote Down

After almost eight months of waiting, I am finally allowed to publish my thesis paper:

Design and Implementation of a Workflow Engine
This thesis discusses the design and implementation of a software component that faciliates the specification, management, and execution of so-called workflows. The discussion of this component's design includes the semantics and syntax of the underlying workflow model as well as the actual software design. The former builds upon the Workflow Patterns [BK03] terminology, the latter on the concepts of a Workflow Virtual Machine [SF04] and the idea that a …
  [Read more...]
SQL Injection Chapter on MySQL Developer Zone
+0 Vote Up -0Vote Down

I am happy to announce that the SQL Injection chapter from my book, Guide to PHP Security has been published on MySQL's developer zone. You can find this chapter here.

Showing entries 1 to 4

Planet MySQL © 1995, 2014, Oracle Corporation and/or its affiliates   Legal Policies | Your Privacy Rights | Terms of Use

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.