Securing MySQL for production server.

Hello,
I am about to start to build a server running 10.5.3 to host a web site with a MySQL back end. Whilst doing this i will be learning about MySQL as i go along. The question i would like to ask though before i get started is What do i need to do initially to secure the MySL installation on a 10.5.3 Leopard Server?
Has Apple secured it as much as possible out of the box, apart form setting the root password or do i need to do further configuring to secure other areas.
PS. Is there such a tool that will check for any security vulnerabilities in your configuration before it goes live?
Thanks in advance for any help.

There are multiple attacks targeting Joomla presently active, based on what the botnets are aiming at the (non-Joomla) web sites I manage.
The web apps are the target here. Joomla, front and center. Yes, the attackers can want into the database, but they're going to try to gain that access through the very same applications that you have already authorized database access. Through your content management system (CMS). If Joomla can access and modify the database, then an attack based on SQL Injection or XSS can itself gain that same access.
Having the DB located local, remote or even on Mars (well, other than the latency) does not alter the security situation, as the target (Joomla) is authorized access into the database.
I don't prefer to connect Mac OS X Server (directly) to the web. For something like this, I use an out-board firewall, set to pass ports 80 and 443, and other specific ports as required, If you connect directly, you have to be much more careful with your management and installation. With Mac OS X Server behind a firewall, you can keep (most of) the port attacks blocked out at the firewall, and not directly on your server. If you install or reconfigure something that opens a port (whether you realize it or not) and you don't have an outboard firewall, that port can be accessed remotely.
I do use the Mac OS X Server firewall, in conjunction with the outboard firewall. I don't prefer to use the host firewall -- in isolation -- in an internet-facing server environment. And I keep that outboard firewall locked down.
One area of database security here involves getting recoverable copies off the host for use if the host becomes compromised. Periodically test the restores, too. And recognize you might have to drop back some number of snapshots, until you find a copy of your database and your web directories that isn't compromised.
Get on the Joomla security notification lists (the content management system I use offers those; haven't specifically checked Joomla), and do lock down your web server. Figure out who owns Joomla or other security updates, and figure out who owns archival processing and recovery, and figure out what you want to do if your server becomes compromised.
For the Apache configurations, you want to block access to all but specified directories, and you can want to block the .htaccess and other site-specific files. Access into your defaults, directory traversals, file specifications, etc., are typically blocked via conf directive or .htaccess. Joomla should have recommendations for this somewhere in its documentation. If not, other CMS pacakges have descriptions of locking down Apache, though various details of this process tend to be somewhat CMS-specific. (Check the [Drupal|http://drupal.org] site; I know that CMS has this sort of thing documented.)
You'll want to watch the attacks, too.
It usually takes me a half-hour or so to fully set up and test Apache, building from my templates and customizing those for the particular CMS install I'm working on. Way more than could be easily included here.

Similar Messages

KB2977326 - Security Update for SQL Server Service Pack 1 repeatedly fails to install

This update fails to install every day when I shut down my computer. Here is the WindowsUpdate.Log:
2014-12-02 15:50:11:469
420 44c
AU #########
2014-12-02 15:50:11:469
420 44c
AU # Initiating install at shutdown
2014-12-02 15:50:11:469
420 44c
AU # Approved updates = 1
2014-12-02 15:50:11:516
420 44c
AU <<## SUBMITTED ## AU: Install updates / installing updates [CallId = {685C12BB-7AA9-4A31-9620-8F306EEE31C3}]
2014-12-02 15:50:11:516
420 44c
Shutdwn InstallAtShutdown starts.
2014-12-02 15:50:11:516
420 1528
Agent *************
2014-12-02 15:50:11:516
420 1528
Agent ** START ** Agent: Installing updates [CallerId = AutomaticUpdates]
2014-12-02 15:50:11:516
420 1528
Agent *********
2014-12-02 15:50:11:516
420 1528
Agent * Updates to install = 1
2014-12-02 15:50:11:531
420 1528
Agent * Title = Security Update for SQL Server 2012 Service Pack 1 (KB2977326)
2014-12-02 15:50:11:531
420 1528
Agent * UpdateId = {E0D65CC4-3B13-4352-BD89-A28C5F4C5017}.200
2014-12-02 15:50:11:531
420 1528
Agent * Bundles 1 updates:
2014-12-02 15:50:11:531
420 1528
Agent * {C076E757-1A4F-44DB-823B-CFFC07CD7D38}.200
2014-12-02 15:50:11:547
420 16d8
Shutdwn InstallAtShutdown got install progress.
2014-12-02 15:50:12:327
420 d4c
Report CWERReporter finishing event handling. (00000000)
2014-12-02 15:50:20:548
420 44c
AU WARNING: Pending directive, 'Install Approval', is not applicable
2014-12-02 15:50:24:417
420 16d8
Shutdwn InstallAtShutdown got install progress.
2014-12-02 15:50:24:432
420 16d8
Shutdwn InstallAtShutdown got install progress.
2014-12-02 15:50:24:432
420 1528
DnldMgr Preparing update for install, updateId = {C076E757-1A4F-44DB-823B-CFFC07CD7D38}.200.
2014-12-02 15:50:25:119
2052 608
Misc =========== Logging initialized (build: 7.6.7600.320, tz: -0600) ===========
2014-12-02 15:50:25:119
2052 608
Misc = Process: C:\Windows\system32\wuauclt.exe
2014-12-02 15:50:25:119
2052 608
Misc = Module: C:\Windows\system32\wuaueng.dll
2014-12-02 15:50:25:119
2052 608
Handler :::::::::::::
2014-12-02 15:50:25:119
2052 608
Handler :: START :: Handler: Command Line Install
2014-12-02 15:50:25:119
2052 608
Handler :::::::::
2014-12-02 15:50:25:119
2052 608
Handler : Updates to install = 1
2014-12-02 15:50:25:119
420 16d8
Shutdwn InstallAtShutdown got install progress.
2014-12-02 15:52:23:991
420 44c
AU AU setting next sqm report timeout to 2014-12-03 21:52:23
2014-12-02 15:54:39:587
2052 608
Handler : WARNING: Command line install completed. Return code = 0x84b20001, Result = Failed, Reboot required = false
2014-12-02 15:54:39:587
2052 608
Handler : WARNING: Exit code = 0x8024200B
2014-12-02 15:54:39:587
420 16d8
AU >>## RESUMED ## AU: Installing update [UpdateId = {E0D65CC4-3B13-4352-BD89-A28C5F4C5017}]
2014-12-02 15:54:39:587
2052 608
Handler :::::::::
2014-12-02 15:54:39:587
2052 608
Handler :: END :: Handler: Command Line Install
2014-12-02 15:54:39:587
2052 608
Handler :::::::::::::
2014-12-02 15:54:39:587
420 16d8
AU # WARNING: Install failed, error = 0x80070643 / 0x84B20001
2014-12-02 15:54:39:587
420 16d8
Shutdwn InstallAtShutdown got install progress.
2014-12-02 15:54:39:711
420 1528
Report REPORT EVENT: {DFA9CDC8-334A-4E57-9588-77B8E980833D}
2014-12-02 15:54:39:587-0600 1
198 101
{E0D65CC4-3B13-4352-BD89-A28C5F4C5017}
200 80070643
AutomaticUpdates Failure
Content Install Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for SQL Server 2012 Service Pack 1 (KB2977326).
2014-12-02 15:54:39:727
420 1528
Report CWERReporter::HandleEvents - WER report upload completed with status 0x8
2014-12-02 15:54:39:727
420 1528
Report WER Report sent: 7.6.7600.320 0x80070643 E0D65CC4-3B13-4352-BD89-A28C5F4C5017 Install 101 Unmanaged
2014-12-02 15:54:39:727
420 1528
Report CWERReporter finishing event handling. (00000000)
2014-12-02 15:54:39:805
420 1528
Agent *********
2014-12-02 15:54:39:805
420 16d8
AU Install call completed.
2014-12-02 15:54:39:805
420 1528
Agent ** END ** Agent: Installing updates [CallerId = AutomaticUpdates]
2014-12-02 15:54:39:805
420 16d8
AU # WARNING: Install call completed, reboot required = No, error = 0x00000000
2014-12-02 15:54:39:805
420 1528
Agent *************
2014-12-02 15:54:39:805
420 16d8
AU #########
2014-12-02 15:54:39:805
420 16d8
AU ## END ## AU: Installing updates [CallId = {685C12BB-7AA9-4A31-9620-8F306EEE31C3}]
2014-12-02 15:54:39:805
420 16d8
AU #############
jim...

Hello,
Please examine the Summary.txt log file. The following article may help you locate the file on disk:
http://msdn.microsoft.com/en-us/library/ms143702(v=sql.110).aspx
If you find the sentence “A failure was detected for a previous installation” on the Summary.txt log file, please repair SQL Server using the following article:
http://msdn.microsoft.com/en-us/library/Cc646006(v=sql.110).aspx
If you find other errors, please share the content of the Summary.txt log file with us.
Hope this helps.
Regards,
Alberto Morillo
SQLCoffee.com

How to uninstall/remove security update for SQL Server 2012

My requirement is to uninstall/remove security update for SQL
Server 2012 Service Pack 1 only. so are these below steps are correct or do I need to take any extra precaution for uninstallation?
Go to Control panelàProgramsà
Programs and FeaturesàInstalled Updrtes, right click on update and uninstall
As per my knowledge in SQL Server 2005, we cannot uninstall a service pack. we have to uninstall SQL Server 2005 completely, and reinstall SQL Server 2005 with previous service
packs and updates. but Starting SQL Server 2008, we can uninstall a service pack using Control Panel.
Rahul

http://blogs.msdn.com/b/askjay/archive/2011/02/07/uninstalling-a-sql-server-service-pack.aspx
Best Regards,Uri Dimant SQL Server MVP,
http://sqlblog.com/blogs/uri_dimant/
MS SQL optimization: MS SQL Development and Optimization
MS SQL Consulting:
Large scale of database and data cleansing
Remote DBA Services:
Improves MS SQL Database Performance
SQL Server Integration Services:
Business Intelligence

Security Update for SQL Server 2008 R2 Service Pack 2 (KB2977320)

So i have been trying to install this update on one of our servers since it is showing up on our MBSA scans but it has been failing on one of our machines with the error code: 0x80070643
I downloaded the update and tired to install it manually. The installer returned: There are no SQL Server instances or shared features that can be updated on this computer. If that was true then why is SCCM still pushing the update to the machine and why
is the MBSA showing that it needs the update? Any advice would be helpful. Thanks!

Hi David,
Based on my understanding, the error code: 0x80070643 was thrown out when you install KB2977320 with MBSA. And installation also failed when you download and install update manually.
Regarding the error code: 0x80070643, it can be caused if the MSI software update registration has become corrupted, or if the .NET Framework installation on the computer has become corrupted. To fix this issue, we can follow these methods:
Fix MSI software update registration corruption issues
Repair the .Net Framework
Uninstall and reinstall the .Net Framework
For more information, please refer to this link:
http://support.microsoft.com/kb/976982.
Besides, the security update is released for SQL Server 2008 R2 Service Pack 2, please check the version of SQL Server you are using. About how to check the SQL Server version, please refer to this article: How to tell what SQL Server version you are running
(http://www.mssqltips.com/sqlservertip/1140/how-to-tell-what-sql-server-version-you-are-running/). Then please download the Security Update for SQL
Server 2008 R2 Service Pack 2 from this link (http://www.microsoft.com/en-us/download/details.aspx?id=43957), and retry install it manually.
Best regards,
Qiuyun Yu

Security Update for Windows Server 2012 R2 (KB3042553)

Hello,
Security Update for Windows Server 2012 R2 (KB3042553) has been advised to be critical update to deal with Vulnerability in HTTP.sys which could allow remote code execution.
However due to some reason I am unable to apply the patch to any of the Windows 2012 R2 servers. It errors - The update is not applicable to your computer, when tried to install manually / locally.
I tried to push it via WSUS and the patch is not getting detected by the servers.
Regional language settings are set to match Windows display language (Which is English).
Is anyone else experiencing this issue too? If so is there way to get this deployed please.
Thank you.
Kumar G

Hi Kumar,
I suggest you check the file version of Http.sys and compare it with the one documented in the KB article below:
MS15-034: Vulnerability in HTTP.sys could allow remote code execution: April 14, 2015
https://support.microsoft.com/en-us/kb/3042553
Best Regards,
Amy
Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

The MS15-10 Security Update for Windows Server 2012/R2 Essentials and the Client Restore Functionality

The MS15-10 Security Update for Windows Server 2012/R2 Essentials and the Client Restore Functionality - The Windows Server Essentials and Small Business Server Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/sbs/archive/2015/03/13/the-ms15-10-security-update-for-windows-server-2012-r2-essentials-and-the-client-restore-functionality.aspx
FYI

Hi Susan. I hope there's a better 'fix' coming to replace this "uninstall the updates, restore, then reinstall the updates after the restore". This kind of workaround requires that all of us remember that there's a problem
with KB3023562 and KB3004375 from now until the end of WS2012E. Not sure I'll remember this 6 months from now when the problem crops up during a restore. -:(
Merv Porter
=========================

PHP/MySQL Test/Production Server best practices

Hello,
I am currently learning PHP/MySql and have setup a test server to develop on and a production server to go live with. I wanted to know what are the best practices for synchronizing the test server with the production. Should I export the database from the test server and import it to the production server each time I make a change or is there better way to incrementally sync the databases. I am using Dreamweaver to design the web site.
Thanks,
Nick

Thanks, but does this mean that after I go live I should make changes on the production database only and not use the development database, if say I need to add a new table or record(s)?
Procedure
1. Take production web site down
2. Export/Save current database
3. Make changes to production database
4. Export/Save new database
5. Bring production web site up
Is this correct?

Security Update for SQL Server 2005 SP3 (KB2494113) failed

Here is the Error, Can't get the update install, please help.
KB Number: KB2494113
Machine: MJA01
OS Version: Server 4.0 Service Pack 1 (Build 7601)
Package Language: 1033 (ENU)
Package Platform: x86
Package SP Level: 3
Package Version: 4060
Command-line parameters specified:
Cluster Installation: No
Prerequisites Check & Status
SQLSupport: Passed
Products Detected Language Level Patch Level Platform Edition
SQL Server Database Services 2005 (BKUPEXEC) ENU SP3 2005.090.4035.00 x86 EXPRESS
SQL Server Tools and Workstation Components 2005 ENU SP2 9.2.3042 x86 EXPRESS
Products Disqualified & Reason
Product Reason
SQL Server Tools and Workstation Components 2005 The product instance SQL Tools does not have prerequisite update 4035 installed. Update 4060 is dependent on prerequisite update 4035. Exit setup and refer to the Knowledge Base article to find the prerequisite
patch. Install the prerequisite and rerun the installation.
Processes Locking Files
Process Name Feature Type User Name PID
Product Installation Status
Product : SQL Server Database Services 2005 (BKUPEXEC)
Product Version (Previous): 4035
Product Version (Final) :
Status : Failure
Log File : C:\Program Files (x86)\Microsoft SQL Server\90\Setup Bootstrap\LOG\Hotfix\SQL9_Hotfix_KB2494113_sqlrun_sql.msp.log
SQL Express Features :
Error Number : 29528
Error Description : MSP Error: 29528 The setup has encountered an unexpected error while Setting Internal Properties. The error is: Fatal error during installation.
Product : SQL Server Tools and Workstation Components 2005
Product Version (Previous): 3042
Product Version (Final) :
Status : NA
Log File :
SQL Express Features :
Error Description : The product instance SQL Tools does not have prerequisite update 4035 installed. Update 4060 is dependent on prerequisite update 4035. Exit setup and refer to the Knowledge Base article to find the prerequisite
patch. Install the prerequisite and rerun the installation.
Summary
One or more products failed to install, see above for details
Exit Code Returned: 29528

Hi Bhanu,
I have uninstall the SQL Server Tools and Workstation Components 2005.
But still unable to upg the SQL Server with the KB249411. Any more ideas?
This is the Summary log.
Time: 09/10/2014 11:09:48.218
KB Number: KB2494113
Machine: MJA01
OS Version: Server 4.0 Service Pack 1 (Build 7601)
Package Language: 1033 (ENU)
Package Platform: x86
Package SP Level: 3
Package Version: 4060
Command-line parameters specified:
Cluster Installation: No
Prerequisites Check & Status
SQLSupport: Passed
Products Detected Language Level Patch Level Platform Edition
SQL Server Database Services 2005 (BKUPEXEC) ENU SP3 2005.090.4035.00 x86 EXPRESS
Products Disqualified & Reason
Product Reason
Processes Locking Files
Process Name Feature Type User Name PID
Product Installation Status
Product : SQL Server Database Services 2005 (BKUPEXEC)
Product Version (Previous): 4035
Product Version (Final) :
Status : Failure
Log File : C:\Program Files (x86)\Microsoft SQL Server\90\Setup Bootstrap\LOG\Hotfix\SQL9_Hotfix_KB2494113_sqlrun_sql.msp.log
SQL Express Features :
Error Number : 29528
Error Description : MSP Error: 29528 The setup has encountered an unexpected error while Setting Internal Properties. The error is: Fatal error during installation.
Summary
One or more products failed to install, see above for details
Exit Code Returned: 29528
Here is what is log in the SQL9_Hotfix_KB2494113_sqlrun_sql.msp.log
Property(S): CommonFilesFolder.D9BC9C10_2DCD_44D3_AACC_9C58CAF76128 = C:\Program Files (x86)\Common Files\
MSI (s) (B8:F0) [11:09:39:826]: Product: Microsoft SQL Server 2005 Express Edition - Update 'GDR 4060 for SQL Server Database Services 2005 ENU (KB2494113)' could not be installed. Error code 1603. Additional information is available in the log file C:\Program
Files (x86)\Microsoft SQL Server\90\Setup Bootstrap\LOG\Hotfix\SQL9_Hotfix_KB2494113_sqlrun_sql.msp.log.
MSI (s) (B8:F0) [11:09:39:827]: Windows Installer installed an update. Product Name: Microsoft SQL Server 2005 Express Edition. Product Version: 9.3.4035.00. Product Language: 1033. Manufacturer: Microsoft Corporation. Update Name: GDR 4060 for SQL Server Database
Services 2005 ENU (KB2494113). Installation success or error status: 1603.
MSI (s) (B8:F0) [11:09:39:828]: Note: 1: 1729
MSI (s) (B8:F0) [11:09:39:828]: Product: Microsoft SQL Server 2005 Express Edition -- Configuration failed.
MSI (s) (B8:F0) [11:09:39:829]: Windows Installer reconfigured the product. Product Name: Microsoft SQL Server 2005 Express Edition. Product Version: 9.3.4035.00. Product Language: 1033. Manufacturer: Microsoft Corporation. Reconfiguration success or error
status: 1603.
MSI (s) (B8:F0) [11:09:39:829]: Attempting to delete file C:\Windows\Installer\63906e.msp
MSI (s) (B8:F0) [11:09:39:829]: Unable to delete the file. LastError = 32
MSI (s) (B8:F0) [11:09:40:092]: Deferring clean up of packages/files, if any exist
MSI (s) (B8:F0) [11:09:40:092]: Attempting to delete file C:\Windows\Installer\63906e.msp
MSI (s) (B8:F0) [11:09:40:094]: MainEngineThread is returning 1603
MSI (s) (B8:6C) [11:09:40:097]: RESTART MANAGER: Session closed.
MSI (s) (B8:6C) [11:09:40:097]: No System Restore sequence number for this installation.
=== Logging stopped: 9/10/2014 11:09:39 ===
MSI (s) (B8:6C) [11:09:40:098]: User policy value 'DisableRollback' is 0
MSI (s) (B8:6C) [11:09:40:098]: Machine policy value 'DisableRollback' is 0
MSI (s) (B8:6C) [11:09:40:098]: Incrementing counter to disable shutdown. Counter after increment: 0
MSI (s) (B8:6C) [11:09:40:098]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3: 2
MSI (s) (B8:6C) [11:09:40:098]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3: 2
MSI (s) (B8:6C) [11:09:40:098]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3: 2
MSI (s) (B8:6C) [11:09:40:098]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3: 2
MSI (s) (B8:6C) [11:09:40:098]: Decrementing counter to disable shutdown. If counter >= 0, shutdown will be denied. Counter after decrement: -1
MSI (s) (B8:6C) [11:09:40:099]: Restoring environment variables
MSI (s) (B8:6C) [11:09:40:099]: Destroying RemoteAPI object.
MSI (s) (B8:30) [11:09:40:099]: Custom Action Manager thread ending.
MSI (c) (FC:60) [11:09:40:100]: Decrementing counter to disable shutdown. If counter >= 0, shutdown will be denied. Counter after decrement: -1
MSI (c) (FC:60) [11:09:40:101]: MainEngineThread is returning 1603
Thanks,
Alice

Security Update for exchange server 2013SP1 KB3011140 Stops all services and failes to install

Hi All,
Over the past 2 days this update has tried to run on the server in the evening but ends up failing. When it fails it is causing all of our exchange services to stop working and when we try to check e-mails the following day we find out the e-mail service
has been offline since the update.
Is there anything specific we need to do before running this update?
Cheers,

Hi,
As what Hotaka says, this update is available from
Windows Update. If it fails, we can also download and install the updates manually. The following stand-alone file is available for download from the Microsoft Download Center:
Download the security update for Exchange 2013 Service Pack 1 package now.
Download the security update for Exchange 2013 Cumulative Update 6 package now.
Regards,
Winnie Liang
TechNet Community Support

Check Points for production server

Hi
We are planning to update patch level of production server and Our SRM server is looking into this server. In this regards, I would like to know what are the check points in Production server after Patching up?
I want to know the main areas which may get affected due to Patch-up.
Regards

Hi,
Pls keep go thru the new features that were introduced thru this patch level. Make note of the Bugs SAP has fixed with this service pack.
Keeping in view of the features and bug fixed keep track of the areas that you need to keep track of.
Its is also important to check for below things.
1. Master Data - Materials, Vendors and Users.
2. Transactional Data - SC's, PR's,PO's Confirmations, Invoices.
3. Workflow.
Regards,
Satya

OEPE installation for production server

Does Oracle Enterprise Pack for Eclipse (OEPE) is required for WebLogic server installation (SOA 11g) for production environment ?
Or this is needed only when you need to develop some some SOA stuff ..

I got the answer that this is needed for OSB 11g.

Hardware specs for production server

Could anyone with operational experience provide some feedback on optimal
configurations for a production box running Weblogic App Server 5.1 ?
thanks,
raj

There is a capacity guide, please contact BEA sales to get a copy.
Cheers - Wei
Raj Rajagopalan <[email protected]> wrote in message
news:[email protected]..
Yes I looked at this link but don't see the type of information I'mlooking
for.
My best guess for an optimal hardware platform at this point is the
following:
Intel box with 256 mb RAM, 10 GB disk with a 800 MHz processor.
Would appreciate any feedback on whether I'm over or under the target fora
production box running WLS.
thanks,
raj
Wei Guan <[email protected]> wrote in message
news:[email protected]..
http://www.weblogic.com/docs51/admindocs/tuning.html
Cheers - Wei
Raj Rajagopalan <[email protected]> wrote in message
news:39bd4d99$[email protected]..
Could you give me a link ?
I see minimum reqts but what I'm looking for is an optimal
configuration
for
a production server. Clearly a maximal config with more of everythingwould
work but I'm hoping to have an intelligent idea of where the 90/10
rule
would apply.
thanks for your help,
raj
Michael Girdley <[email protected]> wrote in message
news:39b70b95$[email protected]..
I suggest checking out the tuning guide located in our
documentation.
>>>>
Thanks,
Michael
Michael Girdley
BEA Systems Inc
"rr" <[email protected]> wrote in message
news:39b6a57b$[email protected]..
btw this will be running whatever is the latest version of
Solaris.
>>>>>
thanks
rr <[email protected]> wrote in message
news:[email protected]..
Could anyone with operational experience provide some feedback
on
optimal
configurations for a production box running Weblogic App Server
5.1
thanks,
raj

Security issues for Java server side code

When reading the Oracle 8i documentation regarding using JDBC
with Java running within the database, I found that the Oracle-
specific call 'defaultConnection()' can be used instead of the
standard 'getConnection()'.
This appears to be what I want to use as it avoids Net8.
However, in the documentation it states that the user ID and
password are ignored. Is there no way, then, of implementing
user based security in a Java program using defaultConnection()?
Thanks,
null

Hi Kiran
          See u know how to call serverside java objects from remoteobject? If u know that every thing same that replace coldfusion and place ur java stuff
          but nothing will change at client side cairngorm architecture.. use blaze ds server to connect with the server and make a remote call to the server and have fun.
         i think u know how to initialize services in cairngorm framework and make some struff on delegate and call serverside java methods from remote object service.
          u can try this dont try for examples in the net or something.. u have a complete knowledge on cairngorm framework .. and just u want to develop j2ee applications ..
          make try with sample applications with j2ee server.. its very easy and little interesting.. make some pojos in serverside to communicate with the database and call that methods..
            i think this will help u and i dont have perfect example for serverside java code...
               this is not and example in cairngorm and java .. but u know cairngorm and i am posting here only the tutorial how to communicate with java methods
         read this article    http://www.adobe.com/devnet/flex/articles/file_upload.html

Security Certificate for BizTalk server

Hello,
We need to have a party certificate for EDI communication for ourselves, as required by some of our trading partners. Currently we have EDI implemented but moving to BizTalk platform. So we do have a certificate for our party in our current AS2 software.
My question is, can we use the same certificate for our party once moved to BizTalk (different computer, different environment). And if not, where would you go to obtain one?
Thanks a lot!
Galina

Hi Galina,
You can use the same certificate which you used in non-BizTalk to BizTalk EDI integration. Security by using certificate is not specific to BizTalk; it’s all related to cryptography and digital signature.
BizTalk just provides a way to support those security implementations. So you can very well use the same certificates used in non BizTalk to BizTalk environment as part of your migration.
For party resolution, you have to use the public certificate of your trading partner. So this certificate must have been shared to you by your trading partner. In your non-BizTalk EDI communication for party
resolution you would have used this public key/certificate. This certificate (public key) is not related to BizTalk or non-BizTalk EDI products. This is used to implement public-private key pair of digital signature. For BizTalk you have to install this public
certificate in “Other People store”
Just and additional info, if you don’t have this (or misses this in future) you have to get this public key from your trading partner to whom you exchange EDI messages.
If this answers your question please mark it accordingly. If this post is helpful, please vote as helpful.

3rd part security providers for SSL Server

Hello,
I was wondering if anyone knows if you can use a 3rd party security provider to
provide SSL for Weblogic 7.x Server ???
What is the best way to accomplish this (eg. MBeans) ???
Does anyone have experience attempting this ???
I would really like to use our security provider which includes support for PKCS#11
hardware etc.
Thanks,
Trevor.

Hi Christian,
I would really like to check out the example you specified in the below URL, but
it appears to be invalid. Could you please send another URL for the example.
PS. Our security provider is a JSSE/JCE implementation. Do you guys have any
implementations or examples of the Sun JSSE provider being used with the BEA Weblogic
model. This would also be very helpful.
Thanks,
Trevor Nielsen
Wedgetail Communications
"Security for Network Devices"
"Christian Plenagl" <[email protected]> wrote:
>
Hi Trevor,
sure you can use your own security provider with WLS 7,
to do this please read the following document:
http://e-docs.bea.com/wls/docs70/dvspisec/index.html
We also provide a sample security provider which is available
at http://dev2dev/direct/SampleSecurityProvidersUnmanaged.zip
Christian Plenagl
Developer Relations Engineer
BEA Support
"Trevor Nielsen" <[email protected]> wrote:
Hello,
I was wondering if anyone knows if you can use a 3rd party securityprovider
to
provide SSL for Weblogic 7.x Server ???
What is the best way to accomplish this (eg. MBeans) ???
Does anyone have experience attempting this ???
I would really like to use our security provider which includes support
for PKCS#11
hardware etc.
Thanks,
Trevor.

Securing MySQL for production server.

Similar Messages

Maybe you are looking for