by Georgi Kodinov
from Oracle

Georgi "Joro" Kodinov has been working on MySQL development since 2006. He's currently leading the MySQL server security development team. Joro has a background in banking IT and a strong interest in security in general.

MySQL Firewall is an application level firewall filter that intercepts incoming queries and validates them against a database of normalized "safe" queries.
As an integral part of the server it takes advantage of the parsing and normalization that is done anyway so it has minimal impact on normal operations.
The firewall has multiple modes. In learning mode it collects the incoming query normalization in a scratchpad that can be persisted to disk. In alert mode it will just alert the DBA for an unknown query but still let it pass.
And in protecting mode it will reject all unknown queries.
The firewall can be used to limit SQL injection or as a complement to the privilege system to support only particular front end applications.
We will go through all of the stages of installing, training and arming the MySQL firewall with understandable examples.

2016 June 23 11:00
1 h
openSUSE Conference 2016
Technology & Development