Another solution to protect your database is to have a seperate backend network exclusively used for database traffic. Your webserver(s) would have two interface cards: one facing the world, one facing the internal database network. This way- there's no chance of intercepting database traffic from the outside.
连接数据库
把连接建立在 SSL 加密技术上可以增加客户端和服务器端通信的安全性,或者 SSH 也可以用于加密客户端和数据库之间的连接。如果使用了这些技术的话,攻击者要监视服务器的通信或者得到数据库的信息是很困难的。
add a note
User Contributed Notes
aastaneh at cmax2 dot com
28-Jul-2006 01:28
28-Jul-2006 01:28
07-Oct-2005 06:20
Obviously, this does not apply if PHP and the DBMS are running on the same machine.