Re: Question re security

From: <david_at_databasesecurity.com>
Date: Thu, 16 Jan 2014 06:49:52 -0000
Message-ID: <48C83D57A4DE47B692E68F2AFEA091DF_at_NAUTILUS>

> You'll need the other Litchfield for that :)
lol :)
>Who here has database servers, app servers, admin and dev workstations,
>each in its own subnet (4 subnets),
>with firewalls between each subnet,
>all inside the company's intranet?

>I'd just like to know why and what security expectations, imperatives,
>constraints/conditions are being addressed/resolved by such a setup?

It depends on what you’re trying to protect. If it’s nuclear launch codes then yes – defence in depth – which this config is a typical example of – is the way to go. If the data is a list of recipes for cupcakes though this would indeed be overkill :)
Cheers,
David

--
http://www.freelists.org/webpage/oracle-l

Received on Thu Jan 16 2014 - 07:49:52 CET

This message: [ Message body ]
Next message: D'Hooge Freek: "Re: Some idea for the security hole in database links"
Previous message: david_at_databasesecurity.com: "Re: trying to drop user"
In reply to: Niall Litchfield: "Re: Question re security"
Next in thread: Nuno Souto: "Re: Question re security"
Reply: Nuno Souto: "Re: Question re security"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message