MySQL security is critical to most organizations. This tutorial takes an in-depth look at using white-hat google hacking (the good kind of hacking, where you have permission) techniques to show you what the "bad guys" can do. You will learn about the following hacking strategies and how they are done: SQL injection, cross-site scripting (XSS), cross-site request forgery (CSRF), gateway vulnerabilities and social engineering, all without violating Google's Terms of Service. We will also discuss how to minimize impact and how to perform forensics.
10 April 09:30 - 12:30 @
DBA, Mozilla Foundation
Sheeri K. Cabral has a master's degree in computer science specializing in databases from Brandeis University and a background in systems administration. Unstoppable as a volunteer and activist since age 14, Cabral founded and organizes the Boston, Massachusetts, USA, MySQL User Group and is the creator and co-host of OurSQLCast: The MySQL Database Community Podcast, available on iTunes. She was the first MySQL Oracle ACE Director, and is the founder (and current treasurer) of Technocation, Inc., a not-for-profit organization providing resources and educational grants for IT professionals. She wrote the MySQL Administrator's Bible and has been a technical editor for high-profile O'Reilly books such as High Performance MySQL 2nd Edition and CJ Date's SQL and Relational Theory.