Security issue between application server and database server

Question

Security issue between application server and database server

Think about this situation .... I have an application server and a database server. The application will request information about the database server. The database server, of course, needs a password. In addition, with an SSL connection. Do I need to establish a connection through a VPN? Also, I am using RoR for development, is there a way to protect database.yml ?? thank.

+3

security ruby-on-rails

Tattat Jul 9 '10 at 5:23

source share

2 answers

Toby hede · Answer 1 · 2010-07-09T06:24:06+0000

Standard practice is to ensure that the database server is not open to the Internet as a whole. In the ideal case, the database should only allow connections from the application server — a connection on the local network blocked by a specific port and IP address. In this case, you do not need SSL because the environment is trusted.

Regardless of your structure or language, there is no real way to protect the database configuration on the application server outside of normal access policies. Lock the server, lock the database permissions for as long as you can (restrict SELECT UPDATE DELETE, etc. On certain tables, as your use-cases allow.

rook · Answer 2 · 2010-07-09T17:02:30+0000

, , , . VPN SSL- , . , , SSL-. , , SSL.

(tcp 3306 mysql). , .

Security issue between application server and database server

More articles: