All Questions
8
questions
2
votes
2
answers
604
views
How can I log access and usage of a MySQL database?
I am currently looking for an existing implementation method to generate logging of accesses and of usage of a series of MySQL databases by developers (not services) for further auditing. My current ...
0
votes
1
answer
107
views
What would be the best way to evaulate the database management systems? [closed]
I am an Information security analyst, looking for creative, non traditional, and unapproved ways to query/evaluate DBMS applications that includes SQL Server and PostgreSQL. Goal here is to protect ...
1
vote
0
answers
127
views
Are missing access logs for a non-production environment populated with over 5 million patient records a big deal?
LOL. I have no background in infosec, so I was hoping to get some input on a very strange thing that has come up involving my local health service provider.
Any input would be swell!
-
A case ...
1
vote
0
answers
610
views
What tools on unix can scan sql dumps for malware? [closed]
I'm attempting to check for malware, spam and any kind of injection/exploitation on a sql dump that has been provided and was wondering what kind of tools are there already in place to help with this?
...
7
votes
1
answer
2k
views
Multi Tenant Database - HIPAA
We are planning to develop a EHR/Billing Software and we are aware about HIPAA rules and regulations. Our current application architecture using a shared database with all client's(Provider/Practice) ...
1
vote
0
answers
206
views
Secure 'pg_settings' for PostgreSQL
I have been looking for some kind of hardening guide towards PostgreSQL which I can use for a security audit of a PostgreSQL DB.
I came across this url, have checked the same. Anything more to this?:
...
5
votes
4
answers
3k
views
MS-SQL Monitoring/Auditing of PHI for HIPAA
We're currently looking for a solution (hardware or software-based) that can monitor and audit all PHI viewing activity per new HIPAA rules. We use MS-SQL for our production database. We have the ...
14
votes
3
answers
12k
views
PostgreSQL Security Audit
Could anyone provide a good resource or check-list for a security review of PostgreSQL?