News (164)

Security guru wants access to bug databases

Security expert Ross Anderson has called for empirical research to be conducted into whether open source or closed source software is more secure, and into the impact that development practices such as extreme programming (XP) have on code quality. Read more »

Software should defend itself: Oracle CSO

Applications will have to defend themselves from attack in the future, according to Oracle's chief security officer Mary Ann Davidson. Read more »

Firm offers new tools for database security

Security software developer Guardium is expected to formally announce Monday a new suite of integrated security applications for databases, a market that's gaining traction in the current regulatory environment. Read more »

Phillips: Oracle may support rival databases

Oracle may make a decision as early as March on whether to support multiple databases in its "Project Fusion" release, which will combine acquired products with its own applications. Read more »

Microsoft readies revamped database, security software

Microsoft says it's set to release near-final versions of its key database server and other business-oriented software. Read more »

UK beefs up huge snooping database

The UK Home Secretary has stressed the need for even greater snooping powers for government, even as the country is planning a massive interception database of all communications. Read more »

Database flaws more risky than thought

Details of multiple security flaws in Oracle and IBM databases have been released by the security company that found them. Read more »

Patched Oracle database 'still vulnerable'

The latest update for Oracle 10g Release 2 does not plug a hole that allows published attack code to run, according to a security researcher. Read more »

Study: Few bugs in MySQL database

A source-code analysis of the MySQL database, a popular open-source program at the heart of many Web sites, revealed few bugs compared with the number found in commercial code, testing company Coverity said Friday. Read more »

Safari 3.2 includes antiphishing tools

Without fanfare, Apple has apparently added antiphishing to its Safari 3.2 release. Read more »

More Databases, Security News Results

Features (245)

What does a DBA do all day?

Data integrity is a DBA's number one responsibility, but do you know what else they do all day? Read more »

Are open source databases for real?

Free and open-source software is making a splash in the world of databases. But is it reliable enough for your critical applications? Read more »

Do you need an application server?

If you're big on technology trends, you may be considering which application server to put in place. But the first question you should ask is whether you truly need one. Read more »

Web application security frameworks (WASF), Part 2: Database lookup

Often, you will want parts of your Web application to be exclusive to certain users. This access distinction requires the use of Web application security frameworks. Continuing our series on Web app security, we explore the database lookup framework. Read more »

Security in the Web 2.0 Era

At the Gartner Symposium ITxpo 2008 in Sydney this week, Andrew Walls, the research director and security analyst at Gartner presented "Security in the Age of E-Commerce and Web 2.0". Read more »

Grant Web servers secure database access

Allowing Web clients to access a database is a delicate matter that should not be attempted lightly or without careful consideration. Read more »

Secure ASP.NET 2.0 sites with Membership API

Beginning with ASP.NET 2.0, the Membership API was added to simplify adding security to a Web application. This article explains how to use the Membership API with a SQL Server back-end. Read more »

Encrypt backups using Oracle 10gR2's RMAN

No IT pros want their company to make headline news because of a data breach. You can make your data less vulnerable to theft by using a new feature in Oracle 10g Release 2 that lets you make encrypted backups via Recovery Manager. Read more »

Add security to applications by using JAAS

Java Authentication and Authorization Service (JAAS) provides the ability to implement the two things that any decent security system needs: authentication and authorisation. See how JAAS may save you time and effort the next time you need to add security to your Java app. Read more »

Configure Snort to log packets to MySQL

We will look at configuring Snort to log packets to a remote MySQL server where a graphical Web interface can be used to view captured packets and statistics. Read more »

More Databases, Security Features Results

Blog (8)

The 2008 Trends and Threats to Internet security

Lana Kovacevic [blogs:webanatomy] -- I recently came across the IBM Internet Security Systems X-Force 2008 Mid-Year Trend Statistics report, which outlines issues affecting internet security, including application vulnerabilities, phishing, malware and spam. Read more »

Google destroys Security Through Obscurity

Chris Duckett [blogs:betaliving] -- Google Labs' new Code Search makes it easier for hackers to find database username and password details by entering strings that are commonly used within configuration files. Read more »

Lets Shindig!

Lana Kovacevic [blogs:webanatomy] -- At this year's Google Developer Day in Sydney, Dan Peterson and John Hjelmstad talked about Apache Shindig, an open source implementation of OpenSocial and gadgets. Read more »

Oracle's Agile PLM gains popularity

Staff [blogs:syslog] -- I recently spoke to Oracle about their Agile Product Lifecycle Management (PLM) solution, an integrated tool for managing information about a product throughout its lifecycle. Read more »

Salesforce's new AIR toolkit

Staff [blogs:syslog] -- Following the announcement that Salesforce will provide a free toolkit for Adobe Flex and AIR development on its Force.com platform, I spoke to the company’s Doug Farber, the Vice President of Operations, Asia Pacific about its functionality and other issues surrounding the toolkit. Read more »

Is public domain software open-source?

Staff [blogs:syslog] -- When writing earlier this week about Adobe's sponsoring of the SQLite project, I ran into a complicated issue: is software released into the public domain also open-source software? Read more »

Google Gears screenshots

Brendon Chase [blogs:codemonkeybusiness] -- Here is a bit of eye candy of the new Google Gears installation and sample code. Read more »

Attack Modeling vs Threat Modeling

[blogs:] -- Traditional Threat Modeling from an adversarial approach is actually Attack Modeling. So what is Threat Modeling then and how does it differ from Attack Modeling? Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

  • Brendon Chase Sun eye Web developers with Netbeans 6.5

    Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »

    -- posted by Brendon Chase

  • Renai LeMay BarCamp buzz: Let the hacking continue

    Attending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »

    -- posted by Renai LeMay

  • Staff Adobe briefly considered its own browser

    Internet Explorer dominates the Web browser market, but are that many people so in love with it? Meanwhile, the Flash player dominates its segment because lots of people find it to be a terrific. So might Adobe one day decide that the next logical step is to try its hand at building its own Web browser? Read more »

    -- posted by Staff

What's on?