Open Source RDBMS - Seamless, Scalable, Stable and Free

한국어 | Login |Register

(click on this box to dismiss)

How does CUBRID compare to Postgres in terms of security (brute force, sql injection, etc.)?

How does CUBRID compare to Postgres in terms of security (brute force, sql injections, etc.)? I am currently weighing my options right now and am impressed with CUBRID's speed but an concerned about security and data protection.

link comment (0)
asked 5 years ago
180 Answers

SQL injections and other security concerns have to be taken care by developers themselves, not the DBMS. This is something common to all databases.

  1. Keep your credentials safe, don't share.
  2. Escaping strings before sending to the server will protect your from SQL injections.
  3. Bind to a specific IP address if you don't want or need remote access except for your specific IP.
  4. When using CUBRID Web Manager, make sure you're within https protocol to encrypt the server-client communication.
  5. When using CUBRID Manager or CUBRID Query Browser or CUBRID Migration Toolkit, make sure your computer is accessible only by you or other trusted people, since these tools optionally allow you to store host or database passwords.
  6. Also, when accessing a remote CUBRID Server, these CUBRID Tools need to have specific ports open. Open them only, not the full range.
  7. If necessary, database users should be granted access to only specific tables if those users don't need to access other tables.
  8. To protect yourself from DDoS attacks, first eliminate the chance of SQL injections. Also, your OS firewall should do its job. Configure it properly.

Other than this, CUBRID is pretty safe. You actually don't have to think about it. Just make sure the above things are taken care of.

What else? Mmm... if you have something else you're concerned about, please let us know. We will be glad to help you.

link comment (0)
answered 5 years ago

You are either using a very old browser or a browser that is not supported.
In order to browse you need to have one of the following browsers:

Internet Explorer: Mozilla Firefox: Google Chrome: