Uploaded image for project: 'Gateway'
  1. Gateway
  2. GTWY-1093

Security audit of the database

XMLWordPrintable

    • Icon: Technical Work Technical Work
    • Resolution: Done
    • Icon: Major Major
    • 1.3.0-M1, 1.3.0
    • None
    • Security
    • None

      It is likely that the permissions for the database are wide open, meaning any user can do anything. The DB should be audited to ensure the permissions are setup to something that would be appropriate and defensible.

          1.
          		 Externalize database credentials. Work Task Done Unassigned
          2.
          		 Correct database owner should be established during database creation. Work Task Done Unassigned
          3.
          		 Update installation and update scripts to accept installation specific role names (not hard coded) Work Task Done Nathan Hook
          4.
          		 Establish list of needed database access roles Work Task Done Nathan Hook
          5.
          		 No security constraints applied to the database Work Task Done Nathan Hook
          6.
          		 Document the changes required for database creation and gateway configuration Work Task Done Nathan Hook

              nhook Nathan Hook
              wilhelmi Nathan Wilhelmi (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: