Quote:
Originally Posted by vvvvv
Btw, doesn't matter if you lock down mysql by ip since the hacker has full control of a white listed box.
|
hm, not sure about this one, because if the db operations are active only for one or two ips, i mean ip of billing or script which is writing into the db, you cannot do anything except from those two ips, and if someone change the settins, then some warning systems have to be activated. but, i am not good in those redneck things but looks like aff security guys have also a bit to learn ... another thing is that every big target will always be under attack, so have luck everyone
