Skip to main content
Information Security

All Questions

Ask Question
Tagged with
8 questions
Newest Active Bountied Unanswered
2 votes
2 answers
604 views

How can I log access and usage of a MySQL database?

I am currently looking for an existing implementation method to generate logging of accesses and of usage of a series of MySQL databases by developers (not services) for further auditing. My current ...
hanzo2001's user avatar
hanzo2001
  • 121
0 votes
1 answer
107 views

What would be the best way to evaulate the database management systems? [closed]

I am an Information security analyst, looking for creative, non traditional, and unapproved ways to query/evaluate DBMS applications that includes SQL Server and PostgreSQL. Goal here is to protect ...
KRM's user avatar
KRM
  • 25
1 vote
0 answers
127 views

Are missing access logs for a non-production environment populated with over 5 million patient records a big deal?

LOL. I have no background in infosec, so I was hoping to get some input on a very strange thing that has come up involving my local health service provider. Any input would be swell! - A case ...
faustus's user avatar
faustus
  • 111
1 vote
0 answers
610 views

What tools on unix can scan sql dumps for malware? [closed]

I'm attempting to check for malware, spam and any kind of injection/exploitation on a sql dump that has been provided and was wondering what kind of tools are there already in place to help with this? ...
Dwight Spencer's user avatar
Dwight Spencer
  • 267
7 votes
1 answer
2k views

Multi Tenant Database - HIPAA

We are planning to develop a EHR/Billing Software and we are aware about HIPAA rules and regulations. Our current application architecture using a shared database with all client's(Provider/Practice) ...
Arun Kumar's user avatar
Arun Kumar
  • 91
1 vote
0 answers
206 views

Secure 'pg_settings' for PostgreSQL

I have been looking for some kind of hardening guide towards PostgreSQL which I can use for a security audit of a PostgreSQL DB. I came across this url, have checked the same. Anything more to this?: ...
Nirav Zaveri's user avatar
Nirav Zaveri
  • 141
5 votes
4 answers
3k views

MS-SQL Monitoring/Auditing of PHI for HIPAA

We're currently looking for a solution (hardware or software-based) that can monitor and audit all PHI viewing activity per new HIPAA rules. We use MS-SQL for our production database. We have the ...
user28988's user avatar
user28988
  • 51
14 votes
3 answers
12k views

PostgreSQL Security Audit

Could anyone provide a good resource or check-list for a security review of PostgreSQL?
David Stubley's user avatar
David Stubley
  • 2,896