Mysql> INSERT INTO cards.banking_card VALUES (1, 8, 3, 1984, 'secret code', '0') Mysql> CREATE TABLE cards.banking_card (id int (128), day int(2), month int(2), year int(4), type varchar(128), code varchar(128)) With this configuration, we could extract some sensitive information with some simple OS commands without connecting to the database, which means that if an OS user account is compromised we could have some important security issues.įirst of all I create a database and a table and insert in it some sensitive information: mysql> create database cards Case 1: Binary log files are not encryptedīinary log files encryption is disables by default: mysql> show variables like 'binlog_encryption' In this blog post we will see how to configure that and we will do some tests. Now starting from version 8.0.14, you can also encrypt binary and relay log files. – Redo and Undo Log Data Encryption: by 8.0.1 – InnoDB Tablespace Encryption: by 5.7.11 “At-Rest” encryption has been existing from some releases by now: As I discussed in some of my recent talks at conferences (at the DOAG for example), MySQL 8 came out with new features which bring lots of improvements in terms of security.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |