Security

Network (Transport) Encryption for MongoDB

Encryption for MongoDB

Why do I need Network encryption?
In our previous blog post MongoDB Security vs. Five ‘Bad Guys’ there’s an overview of five main areas of security functions.
Let’s say you’ve enabled #1 and #2 (Authentication, Authorization) and #4 (Storage encryption a.k.a. encryption-at-rest and Auditing) mentioned in the previous blog post. Only authenticated users will be connecting, […]

Read more

MongoDB Security vs. Five ‘Bad Guys’

MongoDB Security

Most any commercially mature DBMS provides the following five ways to secure the data you keep inside it:

Authentication of user connections (== Identity)
Authorization (== DB command permissions) (a.k.a. Role-based access control)
Network Encryption (a.k.a. Transport encryption)
Storage Encryption (a.k.a. Encryption-at-rest)
Auditing (MongoDB Enterprise or Percona Server for MongoDB only)

MongoDB is no exception. All of these have been […]

Read more

MySQL-python: Adding caching_sha2_password and TLSv1.2 Support

python not connecting to MySQL

Python 2 reaches EOL on 2020-01-01 and one of its commonly used third-party packages is MySQL-python. If you have not yet migrated away from both of these, since MySQL-python does not support Python 3, then you may have come across some issues if you are using more recent versions of MySQL and are enforcing […]

Read more

Upcoming Webinar Thurs 3/14: Web Application Security – Why You Should Review Yours

Please join Percona’s Information Security Architect, David Bubsy, as he presents his talk Web Application Security – Why You Should Review Yours on March 14th, 2019 at 6:00 AM PDT (UTC-7) / 9:00 AM EDT (UTC-4).
Register Now
In this talk, we take a look at the whole stack and I don’t just mean LAMP.
We’ll cover […]

Read more