Richard Golebiowski wrote: Wouldn't using RMI be better then that since it will remove any direct communication to the database?
Richard Golebiowski wrote:Wouldn't using RMI be better then that since it will remove any direct communication to the database?
Richard Golebiowski wrote:What we are trying to protect against is the worst case scenario where the web server is hacked and is totally compromised and someone now has access to that server.
paul nisset wrote:In this situation ,look into encrypting your database and pass data back and forth to the web app via ssl.
It will be slow but at least if your case scenario happens the data should still be encrypted by the time the hacker gets to it.
Where all the women are strong, all the men are good looking and all the tiny ads are above average:
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com
|