Hacker News new | ask | show | jobs
by codepeach 3980 days ago
Having the database on a seperate server doesn't imply it's safe, if the web application has access to the database.

If you are new to web application security, OWASP is a good starting point: https://www.owasp.org/index.php/Main_Page
1 comments
hoodoof 3980 days ago
Sorry I should have asked for specific ideas rather than references to OWASP which seems to be "the answer to all security architecture questions".
link