https://ronaldbradford.com/tags/security/ Recent content in Security on Enterprise Data Architect | Principal Data Strategist | MySQL Subject Matter Expert | Author | Speaker Hugo -- gohugo.io en-us Thu, 27 Feb 2025 00:00:00 +0000 https://ronaldbradford.com/blog/your-attack-vector-extends-beyond-production-systems-2025-02-27/ Thu, 27 Feb 2025 00:00:00 +0000 https://ronaldbradford.com/blog/your-attack-vector-extends-beyond-production-systems-2025-02-27/ A common data security issue is the unprotected copying of production data to non-production environments without any redaction, masking, or filtering. This practice poses a serious risk. A malicious actor will target the weakest link in your infrastructure, including non-production accounts and the developer systems accessing them. https://ronaldbradford.com/blog/weekly-musings-may-20-2022-2022-05-20/ Fri, 20 May 2022 20:00:37 +0000 https://ronaldbradford.com/blog/weekly-musings-may-20-2022-2022-05-20/ The Linux Foundation came across my reading path two separate times this week. As I continue to re-establish my larger footprint solely in the open-source ecosystem Setting an Open Source Strategy is a detailed report for any business to identify the potential return on investment (ROI) of participating in the open-source ecosystem. https://ronaldbradford.com/blog/identifying-mysql-ssl-communication-using-ngrep-2017-10-12/ Thu, 12 Oct 2017 21:49:42 +0000 https://ronaldbradford.com/blog/identifying-mysql-ssl-communication-using-ngrep-2017-10-12/ Prior to MySQL 5.7 client communications with a MySQL instance were unencrypted by default. This plaintext capability allowed for various tools including pt-query-digest to analyze TCP/IP traffic. Starting with MySQL 5. https://ronaldbradford.com/blog/disabling-the-temporary-authorization-token-in-devstack-keystone-2015-05-05/ Tue, 05 May 2015 16:52:29 +0000 https://ronaldbradford.com/blog/disabling-the-temporary-authorization-token-in-devstack-keystone-2015-05-05/ While building my own OpenStack cloud on physical servers I realized that Keystone uses a temporary authorization token in the Create the service entity and API endpoint and Create projects, users, and roles steps. https://ronaldbradford.com/blog/improved-security-with-mysql-5-6-2013-08-01/ Thu, 01 Aug 2013 17:28:00 +0000 https://ronaldbradford.com/blog/improved-security-with-mysql-5-6-2013-08-01/ Installed on a clean CentOS 6.4 AWS instance. sudo su - cd /tmp wget http://cdn.mysql.com/Downloads/MySQL-5.6/MySQL-5.6.13-1.el6.x86_64.rpm-bundle.tar tar xvf MySQL-5.6.13-1.el6.x86_64.rpm-bundle.tar yum install -y libaio perl rpm -i MySQL*.rpm The following output is the sign that security is being considered with new MySQL versions. https://ronaldbradford.com/blog/mysql-client-password-security-2012-08-15/ Wed, 15 Aug 2012 17:12:36 +0000 https://ronaldbradford.com/blog/mysql-client-password-security-2012-08-15/ In case you missed it, MySQL 5.6.6, also known as Milestone 9, was recently released. I have yet to install this, however just one part of the MySQL 5.6.6 Release Notes makes placing installing and testing high on my TODO list. https://ronaldbradford.com/blog/encrypting-your-mysql-backups-and-more-2012-07-16/ Mon, 16 Jul 2012 20:03:55 +0000 https://ronaldbradford.com/blog/encrypting-your-mysql-backups-and-more-2012-07-16/ Assuming you have a backup and recovery strategy in place, how secure is your data? Does a hacker need to obtain access to your production system bypassing all the appropriate security protection you have in place, or just the unencrypted data on the backup server? https://ronaldbradford.com/blog/mysql-security-essentials-presentation-2012-02-15/ Wed, 15 Feb 2012 18:16:40 +0000 https://ronaldbradford.com/blog/mysql-security-essentials-presentation-2012-02-15/ Today at the RMOUG Training Days 2012 event I gave an introduction presentation on MySQL Security Essentials covering the following topics: MySQL Security defaults MySQL Security Improvements OS Security User Privileges Data Integrity Installation Practices Auditing Options Better Security Further References Download slides for MySQL Security Essentials . https://ronaldbradford.com/blog/do-you-use-phpmyadmin-2011-02-02/ Wed, 02 Feb 2011 19:16:34 +0000 https://ronaldbradford.com/blog/do-you-use-phpmyadmin-2011-02-02/ If so then were is it installed on your publicly accessible website. If the location is where the documentation states not to put it, or in other popular locations then you can easily become open to an attack. https://ronaldbradford.com/blog/best-practices-additional-user-security-2010-06-03/ Thu, 03 Jun 2010 16:12:50 +0000 https://ronaldbradford.com/blog/best-practices-additional-user-security-2010-06-03/ By default MySQL allows you to create user accounts and privileges with no password. In my earlier MySQL Best Practices: User Security I describe how to address the default installation empty passwords. https://ronaldbradford.com/blog/mysql-best-practices-user-security-2010-05-21/ Fri, 21 May 2010 18:36:37 +0000 https://ronaldbradford.com/blog/mysql-best-practices-user-security-2010-05-21/ It is critical that you do not use the default MySQL installation security, it’s simply insecure. Default Installation When installed, MySQL enables any user with physical permissions to the server to connect to the MySQL via unauthenticated users.