Buy Percona ServicesBuy Now!

20-30% Performance Hit from the Spectre Bug Fix on Ubuntu

 | January 23, 2018 |  Posted In: Insight for DBAs, Insight for Developers, MySQL, Security

Spectre Bug Fix on Ubuntu

In this blog post, we’ll look at the performance hit from the Spectre bug fix on Ubuntu. Recently we measured the performance penalty from the Meltdown fix on Ubuntu servers. It turned out to be negligible. Today, Ubuntu made a Spectre bug fix on Ubuntu available, shipped in kernel 4.4.0-112. As with the Meltdown fix, […]

Read More

Does the Meltdown Fix Affect Performance for MySQL on Bare Metal?

and  | January 18, 2018 |  Posted In: Insight for DBAs, Insight for Developers, MySQL, Security

Meltdown Fix Affect Performance small

In this blog post, we’ll look at does the Meltdown fix affect performance for MySQL on bare metal servers. Since the news about the Meltdown bug, there were a lot of reports on the performance hit from proposed fixes. We have looked at how the fix affects MySQL (Percona Server for MySQL) under a sysbench workload. […]

Read More

ProxySQL Firewalling

 | January 15, 2018 |  Posted In: Database Monitoring, MySQL, ProxySQL, Security

ProxySQL Firewalling

In this blog post, we’ll look at ProxySQL firewalling (how to use ProxySQL as a firewall). Not long ago we had an internal discussion about security, and how to enforce a stricter set of rules to prevent malicious acts and block other undesired queries. ProxySQL came up as a possible tool that could help us in achieving […]

Read More

Meltdown and Spectre: CPU Security Vulnerabilities

and  | January 4, 2018 |  Posted In: MongoDB, MySQL, open source databases, Security

CPU Security Vulnerabilities

In this blog post, we examine the recent revelations about CPU security vulnerabilities. The beginning of the new year also brings to light fresh and new CPU security vulnerabilities. Today’s big offenders originate on the hardware side – more specifically, the CPU. The reported hardware kernel bugs allow for direct access to data held in the […]

Read More

The hidepid Options for /proc and Percona XtraDB Cluster Don’t Play Well Together

 | December 27, 2017 |  Posted In: MySQL, Percona XtraDB Cluster, Security

hidepid

In this blog, we’ll look at how the hidepid options for /proc and Percona XtraDB Cluster can fight with one another. One of the things I like about consulting at Percona is the opportunity to be exposed to unusual problems. I recently worked with a customer having issues getting SST to work with Percona XtraDB […]

Read More

MongoDB Security: Using LDAP Authentication

 | November 6, 2017 |  Posted In: MongoDB, Security

MongoDB Security

In this blog post, we’ll focus on MongoDB security and discuss how to configure Percona Server for MongoDB to authenticate a user with an LDAP server. It is important to mention that Percona Server for MongoDB features LDAP authentication free of charge for everyone in all our versions. This feature is not available in the MongoDB Community versions. […]

Read More

ProxySQL Improves MySQL SSL Connections

 | September 19, 2017 |  Posted In: ProxySQL, Security, SSL

In this blog post, we’ll look at how ProxySQL improves MySQL SSL connection performance. When deploying MySQL with SSL, the main concern is that the initial handshake causes significant overhead if you are not using connection pools (i.e., mysqlnd-mux with PHP, mysql.connector.pooling in Python, etc.). Closing and making new connections over and over can greatly impact […]

Read More

Revenge of Ransomware! MongoDB Security in the News Again . . .

 | September 5, 2017 |  Posted In: Insight for DBAs, Insight for Developers, MongoDB, Security

MongoDB Security

A new set of MongoDB attacks and data breaches struck businesses this weekend, mirroring the attacks that hit back in January and putting MongoDB security back into the spotlight. Like the last set, this new attack strategy focused on ransomware that demanded a paid ransom to unlock hijacked data. As with many security breaches, the attack was preventable – […]

Read More