|
|
|
|
|
|
by mattbrewsbytes
1479 days ago
|
|
|
Can you elaborate what you are thinking threat detection means? > not interested in how to secure a database using privileges/roles I wanna bet that is the most prevalent threat vector for any system, getting someones account creds. Detecting a database login from a system that is unknown to the database server would be good threat detection. Having worked on web applications for a couple decades, protecting against SQL injection and checking parameters in the apps that communicate to the database is good practice. In order to detect these threats, usually you run scans on web apps (that attempt SQL injection) or I suppose you could run scans against the database server itself to determine if someone could get access, check for default accounts, etc. |
|
|