Seguridad de Bases de Datos
There is no need to run your db on vmware... If they're on the same machine the connection always goes through the local loopback device thus never touching the actual network.
This is true both when the DB host is specified as 'localhost' or '127.0.0.1' and if the machine's actual host name or outside network address is used (in which case the OS will/should recognise that it's actually a local connection and uses the loopback)
Conexión con la Base de Datos
Puede que desee establecer las conexiones sobre SSL para encriptar las comunicaciones cliente/servidor, incrementando el nivel de seguridad, o puede hacer uso de ssh para encriptar la conexión de red entre los clientes y el servidor de la base de datos. Si cualquiera de estos recursos es usado, entonces monitorear su tráfico y adquirir información sobre su base de datos será difícil para un atacante potencial.
add a note
User Contributed NotesConexión con la Base de Datos
M Zijlstra
17-Aug-2007 02:11
17-Aug-2007 02:11
jakub dot lasinski at interia dot pl
29-Jul-2007 05:15
29-Jul-2007 05:15
Even if webserver and DBMS are on the same phisical machine one can separate networks by setting database in virtual server inside the main system (using for example VMware solutions).
aastaneh at cmax2 dot com
28-Jul-2006 03:28
28-Jul-2006 03:28
Another solution to protect your database is to have a seperate backend network exclusively used for database traffic. Your webserver(s) would have two interface cards: one facing the world, one facing the internal database network. This way- there's no chance of intercepting database traffic from the outside.
07-Oct-2005 08:20
Obviously, this does not apply if PHP and the DBMS are running on the same machine.