silver163 — 2011-03-27T16:58:24-04:00 — #1
I got a server running with Windows 7 64 bit and I got MySQL Server on there and I need to encrypt all the DB's. What's the best way to get this done? I use HeidiSQL to control the database.
r937 — 2011-03-27T17:38:37-04:00 — #2
encrypt all the DBs?? whatever for?
this sounds like a PHB requirement
force — 2011-03-27T17:46:06-04:00 — #3
A database typically sits behind a password.
If you're trying to encrypt user passwords, search for password hashing with a salt. That, however, takes place at the application level, not the database level. The database just stores the end result. Hashing is a one-way type of encryption, so you won't be able to get the original value back...just compare it to another hashed value.
silver163 — 2011-03-27T18:01:27-04:00 — #4
more like Visa being the pointy hair boss, unfortunately we must encrypt all of our emails that are stored within the database, in case someone copies the files.
oddz — 2011-03-27T21:15:56-04:00 — #5
That would be a two way encryption for the content of the email.
felgall — 2011-03-27T21:55:38-04:00 — #6
So when someone copies all the files that they have to run the file with the decryption code in it before they can read the other files? I guess that would add a few extra seconds to the time taken to access the information in those emails.
Note also that emails are not allowed to contain any confidential information (eg. credit card numbers) at all since the email gets stored in plain text on various servers around the world when it is in the process of making its way from the sender to the recipient. To get around that you'd need everyone to have security certificates installed to use with the emails that allow the email to be encrypted before it is sent.
silver163 — 2011-03-29T00:24:12-04:00 — #7
Well seconds sure but only if they want a supercomputer handy, the NSA got one that literally does it in seconds but I highly doubt that anyone has the resources for that. i am not trying to make this "uncrackable" i am trying to take every measure possible to ensure security.
you can install a firewall on a computer but as long as the computer is used by people and the more people use the bigger the usage the more security vulnerabilities doesn't mean you shouldn't bother with security at all.
i just want to see if there are any external software that can encrypt the DB's and work with the server