Showing entries 1 to 10 of 468
10 Older Entries »
Displaying posts with tag: Security (reset)
Use MySQL Without a Password (and Still be Secure)

Some say that the best password is the one you don’t have to remember. That’s possible with MySQL, thanks to the auth_socket plugin and its MariaDB version unix_socket.

Neither of these plugins is new, and some words have been written about the auth_socket on this blog before, for example: how to change passwords in MySQL 5.7 when using plugin: auth_socket. But while reviewing what’s new with MariaDB 10.4, I saw that the unix_socket now comes installed by default and is one of the authentication methods (one of them because in MariaDB 10.4 a single user can have more than one authentication plugin, …

[Read more]
MySQL Keyring now speaks Hashicorp Vault

As an intro to his performance act, an “old school” entertainer Victor Borge once famously asked the audience: Do you care for piano music?, which was greeted by a crowd, only to be immediately followed by a self-ironic punch line – “Too bad.”

Security topics share a similar notion – namely, once you start caring for them, you get exposed to an almost unmanageable set of constraints, issues and hard choices.…

Facebook Twitter LinkedIn

Support for TLS 1.3 in Group Replication

In MySQL 8.0.18, we enhanced the Group Communication System (GCS) layer used by Group Replication (GR) with the ability to use and configure member-to-member connections using TLS v1.3. Therefore, you can secure further your system’s communication with the latest security algorithms.…

Tweet Google Plus Share

MySQL is OpenSSL-only now !

MySQL needs an SSL/TLS library. It uses it primarily to encrypt network connections, but also uses its various algorithms and random number generators.

OpenSSL is the golden standard when it comes to cross-platform open source SSL/TLS library that you use from C/C++.…

Facebook Twitter LinkedIn

Replication with restricted privileges

Up until MySQL 8.0.18, the slave executes replicated transactions without checking privileges. It does so to be able to apply everything that its upstream server (the master) tells it to. In practice this means that the slave fully trusts its master.…

Tweet Google Plus Share

Protecting Your MySQL Servers From Ransomware

Author: Robert Agar

A constant in the computing world is that it is always evolving and offering new challenges and opportunities. Software solutions come and go with some becoming staples in the business community while others barely cause a ripple as they disappear into the ether. Take MySQL as an example. From its humble beginnings in 1994, the platform has grown to become the most popular SQL database in 2019. If you are a database professional, chances are very good that you work with MySQL regularly.

The popularity of the database platform has not gone unnoticed by the unscrupulous entities that engage in cybersecurity attacks with nefarious intentions. Whether acting …

[Read more]
Column Level Masking on MySQL

Data is an invaluable asset to any organisation and every data should not be viable to all DB users. I had a requirement from one of our Support client to hide (mask) a few columns to the end user. Those columns contains sensitive information like payment details and mobile numbers.

In this blog post I am going to explain the how data masking features in Maxscale can be benefitted in such use case.

Maxscale Masking

Masking filter was introduced on the Maxscale 2.1 version . Below is a simple scenario. The columns “name” and “mobile” from the table student has to be masked.

[root@labs7.mydbops.com ~]# maxscale --version                                                           MaxScale 2.3.6

#Table Structure 

mysql> show create table student\G
*************************** 1. row ***************************
       Table: …
[Read more]
MariaDB 10.3.15, MariaDB Connector/C 3.0.10, MariaDB Connector/Node.js 2.0.5 and MariaDB Connector/ODBC 3.1.1 Now Available

The MariaDB Foundation is pleased to announce the availability of MariaDB 10.3.15, the latest stable release in the MariaDB 10.3 series, as well as MariaDB Connector/C 3.0.10, MariaDB Connector/ODBC 3.1.1 and MariaDB Connector/Node.js 2.0.5, the latest MariaDB Connector releases. See the release notes and changelogs for details. Download MariaDB 10.3.15 Release Notes Changelog What is […]

The post MariaDB 10.3.15, MariaDB Connector/C 3.0.10, MariaDB Connector/Node.js 2.0.5 and MariaDB Connector/ODBC 3.1.1 Now Available appeared first on MariaDB.org.

Not enforcing SSL on CloudSQL, really !

When creating a MySQL CloudSQL instance, SSL connections are not enforced by default and you get below in the Connections tab of the Google Cloud Platform console.  Is this a problem ?  Some people might think no, but I do not agree with them.  And if I am writing this post, you can probably guess that there is a lot to say about this subject.  Read on for the details.

When creating a MySQL

MySQL8 Cluster and Networking Problems

This is my second post on the topic of reliable MySQL8 cluster. Hopefully the last one as things look much brighter now. In my previous post about MySQL8 and building an InnoDB cluster, I’ve described the overall design of the KeyChest backend. This has been running well for a couple of weeks till a network

The post MySQL8 Cluster and Networking Problems appeared first on Magic of Security.

Showing entries 1 to 10 of 468
10 Older Entries »