1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

How can i protect my database from Hack?

Discussion in 'Databases' started by ram.sharma, Nov 25, 2013.

0
  1. #1
    I am creating stock exchange site. and there is very important information will save in database. so as my title my question is How can i protect my database from Hack?

    Is there any way to create automatiç backup of every change in databse
     
    ram.sharma, Nov 25, 2013 IP
  2. dxter

    dxter Greenhorn

    Messages:
    26
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    11
    #2
    In most cases the database can get hacked through unsecured queries called from your scripting language. Treat any data coming from the user as tented.
     
    dxter, Nov 25, 2013 IP
  3. Monyak

    Monyak Greenhorn

    Messages:
    26
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    11
    #3
    Well, it's very relative to the programming of the site.
    Take a look at mysql injection for more info as that is the most common method.
     
    Monyak, Dec 1, 2013 IP
  4. khodem

    khodem Well-Known Member

    Messages:
    206
    Likes Received:
    8
    Best Answers:
    3
    Trophy Points:
    120
    #4
    give more info what kind of database? each database have it's own tricks depending on your specific needs... what you just asked is general and it depends on many factors and what really you are protecting? a field in database or table or something like that more info will help to give you a better answer :D
     
    khodem, Dec 8, 2013 IP
  5. Andrei_RO

    Andrei_RO Well-Known Member

    Messages:
    86
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #5
    Best way to protect your webpage from hackers is never to create a webpage :D
     
    Andrei_RO, Dec 15, 2013 IP
  6. andrewhoward123

    andrewhoward123 Active Member

    Messages:
    149
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    50
    #6
    Use session and other error-handling functions for securing your databases....
     
    andrewhoward123, Dec 23, 2013 IP
  7. crivion

    crivion Notable Member

    Messages:
    1,669
    Likes Received:
    45
    Best Answers:
    0
    Trophy Points:
    210
    Digital Goods:
    3
    #7
    use PDO binded parameters. you shouldn't create a stocks exchange website with sensitive data without having security concepts though.
     
    crivion, Jan 16, 2014 IP
  8. Sandra Peterson

    Sandra Peterson Greenhorn

    Messages:
    3
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    21
    #8
    Well each database has its own methods and ways, therefore, you need to understand them first. Use session handling feature, if it works.
     
    Sandra Peterson, May 6, 2014 IP
  9. Techlosi

    Techlosi Greenhorn

    Messages:
    2
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    21
    #9
    Use mysql prepared statement to run all your queries
     
    Techlosi, Oct 23, 2014 IP
  10. Mann_Youth

    Mann_Youth Greenhorn

    Messages:
    4
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    21
    #10
    set the password of the database and create the time session of query index or set SSL certificate on your website
     
    Mann_Youth, Dec 20, 2014 IP
  11. JEET

    JEET Notable Member

    Messages:
    3,825
    Likes Received:
    502
    Best Answers:
    19
    Trophy Points:
    265
    #11
    You can schedule daily backups of your databases.

    To protect your database you must make sure that the queries you send to database are not hackable. It means that when you take user input and use that in a query ( like search etc), then the user is not entering something that can be used to manipulate your database.
    ESCAPE the data that you use in a query specially if it's coming from a form or querystring. ( "addslashes" is one way ).

    Take care



     
    JEET, Dec 28, 2014 IP
  12. Axumata

    Axumata Greenhorn

    Messages:
    22
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    10
    #12
    Web security is a very complex and intricate thing. If you want to do it right, then consider the following:
    — Read security guidelines. There are plenty of them, just google.
    — Actually keep in mind and apply every single thing from these guidelines while developing your website.
    — Order a security audition of your website and follow their recommendations.
     
    Axumata, Dec 28, 2014 IP
  13. hostingros

    hostingros Greenhorn

    Messages:
    7
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    21
    #13
    Use --skip-networking for mysql to disable remote connections
    It will then be restricted your IP itself
     
    hostingros, Jan 6, 2015 IP