Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
You are here
:
Home
>
Resources
>
Lectures
> DBMS and security
Go to:
HSC Trainings
Search
:
Services
Skills & Expertise
Consulting
ISO 27001 services
Vulnerabilities monitoring
Audit & Assessment
Penetration tests
Vunerability assessment (TSAR)
Forensics
ARJEL
Training courses
E-learning
Conferences
Agenda
Past events
Tutorials
Resources
Thematic index
Tips
Lectures
Courses
Articles
Tools (download)
Vulnerability watch
Company
Hervé Schauer
Team
Job opportunities
Credentials
History
Partnerships
Associations
Press and
communication
HSC Newsletter
Press review
Press releases
Publications
Contacts
How to reach us
Specific inquiries
Directions to our office
Hotels near our office
DBMS and security
Access to the content
Beginning of the presentation
PDF version
[835 KB]
Description
Context & Dates
Presentation given at the CFSSI round tables, on 1 April 2002.
Author
Alain Thivillon (Alain.Thivillon@hsc.fr) and Nicolas Jombart
Type
[
-
]
Abstract &
Table of content
Flyleaf
Les SGBD dans la sécurité
Les SGBD dans la sécurité - 1
Les SGBD dans la sécurité - 2
Les risques
Les risques - 2
Oracle - 1
Oracle - 2
Oracle - 3
MS-SQL Server - 1
MS-SQL Server - 2
MS-SQL Server - 3
MS-SQL Server - 4
MySQL - 1
MySQL - 2
Contre mesures - 1
Contre mesures - 2
Contre mesures - 3
Déni de service
Injection SQL
Injection SQL : méthodes
Le problème
Injection SQL : autre exemple
Injection SQL : écueils
Injection SQL : messages d'erreur
Injection SQL : UNION
Contre-mesures
Conclusion
Références
Related documents
Databases
Databases security
[28 September 2007 -
]
Database and ERP security
[15 June 2005 -
]
Database and security
[8 July 2003 -
]
Illustra
[15 January 1996 -
]
Web
Web Servers and applications Security
Webef tool
[Bruteforcer of web server files and directories -
]
Webshells, or how to open your network's doors ?
[21 October 2010 -
]
JBoss AS: exploitation and reassure
[11 June 2010 -
]
Webshells, or how to open your network's doors ?
[16 March 2010 -
]
Webshells, real threat for information systems ?
[1 December 2009 -
]
Security issue seen in enterprises web applications
[27 November 2008 -
]
Application security
[23 October 2008 -
]
Feedback from PHP applications assessment
[21 November 2007 -
]
Evolution of Cross-Site Request Forgery Attacks
[1 June 2007 -
]
Encrypting hostile Web content over HTTP
[31 May 2007 -
]
Web 2.0 : more ergonomic... and less secure ?
[22 May 2007 -
]
Configuring and using modsecurity2
[24 April 2007 -
]
Presentation of Apache ModSecurity module
[14 June 2006 -
]
Database and ERP security
[15 June 2005 -
]
SSL VPN connection multiplexing techniques
[7 April 2005 -
]
PHP and security
[27 November 2003 -
]
Web Services and Security
[10 September 2003 -
]
HTTP/HTTPS authentication methods
[10 March 2003 -
]
The cross-site scripting
[27 February 2003 -
]
Apache and web servers security
[1 February 2002 -
]
Implementing filtering on a reverse HTTP proxy using mod_eaccess
[3 September 2001 -
]
Subweb tool
[HTTP reverse proxy -
]
Babelweb tool
[Automatic information retrieving from of a web server -
]
Universal CGI wrapper
[5 August 2001 -
]
Why HTTPS is not web security
[7 May 2001 -
]
Filtering URLs in a reverse proxy
[5 May 2001 -
]
Hacking web servers
[14 March 2001 -
]
Why a reverse proxy
[13 February 2001 -
]
Apache as a reverse proxy
[11 November 2000 -
]
Secure internet services (email, DNS, web) under Linux
[26 September 2000 -
]
Secure internet services (email, DNS, web) under Linux
[26 April 2000 -
]
Secure Internet services (email, DNS, web) under Linux
[1 February 2000 -
]
Netscape
[16 January 1996 -
]
Risks
ISO 27005 vs EBIOS, Mehari, RiskIT, ...
[25 June 2010 -
]
Risk evolution for the SME/SMI
[22 June 2010 -
]
ISO 27005 risk management methodology
[15 April 2010 -
]
ISO 27005 risk management methodology
[12 June 2009 -
]
Aristote seminary : Distributed Security : the reply of the CISO
[11 June 2009 -
]
ISO 27001 and risk management
[10 April 2008 -
]
ISO 27005 : Risk management
[15 May 2007 -
]
ISO 27001, the standard of the future ? Wich role in our information systems security strategy ?
[26 April 2007 -
]
ISO 27001 standards
[28 March 2007 -
]
Manage new computer security issues
[30 June 2004 -
]
DOS on Internet infrastructure
[4 November 2003 -
]
Security risks from outside
[29 October 2002 -
]
Risks and solutions of an e-business project
[28 September 2001 -
]
Controling the risks associated with e-business
[21 June 2000 -
]
Network security: intrusion risks and countermeasures
[18 November 1999 -
]
About Intranets' Lack of Security
[August 1999 -
]
Threats and risks in Internet/intranet security
[19 March 1998 -
]
Bypassing Internet security gateways
[19 March 1997 -
]
The risks of security gateways' bypassing
[26 September 1996 -
]
Copyright
© 2003, Hervé Schauer Consultants, all rights reserved.
Last modified on 10 September 2003 at 15:43:38 CET - webmaster@hsc.fr
Information on this server
- © 1989-2010 Hervé Schauer Consultants
-
![[Presentation]](/gif/icone.supports.png){kind=small}
![[Techno-watch]](/gif/icone.veille.png){kind=small}
![[Course]](/gif/icone.formations.png){kind=small}
![[Tool]](/gif/icone.outils.png){kind=small}
]
![[Tip]](/gif/icone.breves.png){kind=small}
]
![[Article]](/gif/icone.articles.png){kind=small}