Quote:
|
GreenSQL is an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy and has built in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands (DROP, CREATE, etc). GreenSQL is distributed under the GPL license.
|
GreenSQL listens on a different port, 3305, so that you can choose wether to use the firewall or not between your applications. If you want an application to be behind the firewall connect to TCP port 3305 instead, else use the usual port 3306 or the local Unix socket file.
Packages are available from their website as well as source code if your operating system is not listed on the downloads page.
I have personally not tested or installed the software, but it does sound promising although on its beta stages. For those who does security for a snack, comments?
Read more ...