Database firewall onefirewall, how to prevent the hacker physical deletion? Prevent Ctrip from happening again

Source: Internet
Author: User

Database firewall onefirewall, how to prevent the hacker physical deletion? Prevent Ctrip from happening again


First explain the database firewall principle (white list mechanism): Similar to 360 mobile phone defender, pre-defined address book, others call you, only in the Address Book phone can answer, no direct rejection in the Address book.


The database is usually the focus of sensitive information, but also one of the biggest targets of hacker attacks, after the breach of the database, you can use the fastest way to obtain a large number of useful data, such an example of the frequency of occurrence. You can take advantage of the white-list mechanism of the middleware-oneproxy, at which point Oneproxy only handles the SQL statements that meet the whitelist requirements, and all other illegal SQL (such as drop, delete, etc.) will be rejected by Oneproxy and cannot be executed.


Collection method:
It is easy to collect the white list of SQL in the environment or online environment, allow the application to access the database through Oneproxy, perform detailed functional tests, or run online for a period of time, Oneproxy collects all the SQL statements that have been run, handles them accordingly, and replaces the strings and numbers with " ?” No. You can then export these SQL statements with the Save SQL command to get a list of legitimate SQL statements.


Test:

If it can be found that the legitimate query can be executed, and illegal drop, delete is Oneproxy forbidden.

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M02/6E/DD/wKiom1WKIQLCmc_fAAWRkyNi9DU635.jpg "title=" Firewall.jpg "alt=" Wkiom1wkiqlcmc_faawrkyni9du635.jpg "/>



This article is from the "Spring Yang Technical column" blog, please be sure to keep this source http://hcymysql.blog.51cto.com/5223301/1664972

Database firewall onefirewall, how to prevent the hacker physical deletion? Prevent Ctrip from happening again

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.