Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Verifying Security of a Hosted Site?

Posted by timothy on from the just-wait-for-the-spam dept.

edi_guy writes "I'm getting ready to launch a small commercial website that will contain customer information in a MySQL database that will be run by a web-hosting service. While I have good experience with SQL databases from a programming point of view, I'm not an expert on securing them. Given all of the publicity around break-ins and data theft on a seemingly daily basis, it seems prudent to review this now rather than later. What are suggestions on resources that would help verify that both myself and my hosting service are following best practices on securing a database backed website?"

2 of 182 comments (clear)

  1. Do not use mySQL by Anonymous Coward · · Score: 0, Funny

    You will be open to SQL injection attacks. Also, do not say anything negative about the Chinese or Hillary Rodham Clinton, and do not Tweet pictures of your crotch to Hillary Rodham Clinton.

  2. Simple yet effective website security test: by nuckfuts · · Score: 4, Funny

    Post some inflammatory content concerning Anonymous. Include boasts about being invulnerable to retaliation.