Protecting databases
Having knowledge of what databases you are using and where they are can go a long way toward protecting and securing them. Yet, no organization can be 100% safe. However, steps can be taken to decrease a company’s attack surface and mitigate security issues. One of the first things a defender can do besides applying patches is to consider the security problem both from an insider’s and an outsider’s perspective. This will allow defenders to consider things outside of their normal operating perspective.
As pointed out earlier in this chapter, defenders will need to apply mitigation techniques to the attacks described so far. This can also be referred to as a defense-in-depth posture and includes, but is not limited to, the following:
- Look for and discover databases in use and potential data exposures. This is largely accomplished through scanning.
- Implement strong authentication, don’t allow blank passwords, and if possible...
