Danil Zburivsky (The Pythian Group) speaks at the 2010 O’Reilly MySQL User Conference & Expo on Security Around MySQL
Slides – http://assets.en.oreilly.com/1/event/36/Security%20Around%20MySQL%20Presentation.odp
From the official conference description at: http://en.oreilly.com/mysql2010/public/schedule/detail/13458
In this talk well look at the different ways to compromise MySQL security in typical deployment scenarios through vulnerabilities in the underlying hardware, the operating system, applications, and the network. We will not be focusing just on security from hackers, but from internal sources as well who may be intending to steal data.
Some of these methods include:
* using memory dumps/straces to extract encryption keys/encrypted disk data
* using DRAC/RSA cards to gain access to secure servers
* gathering passwords at the switch layer.
Well also discuss ways to prevent these attacks on the MySQL data including:
* encryption both at the network and disk level
* advanced access controls including AppArmor and SELINUX
* network security
Duration : 0:37:27
[youtube kroiQfIAsoM]