> Second, the security concerns of you and your ISP may differ > somewhat. Your > ISP is probably more concerned that their servers will be > rooted. You may be > more concerned about the integrity of your data. Granting > remote access to > your database may not be a security issue for your ISP, even > if it is for > you - this would depend on how the database server itself is > configured.
Good point. And if the ISP sets up the DB correctly, a brute force on one of their client's accounts will only give an attacker access to that client's data (unless he fires of a DOS or something like that, but those usually don't need DB access to succeed). So in the end the exposure is what the client is willing to deal with, and the client is the only loser if an attack occurs. ---------------- [INFO] -- Access Manager: This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. A2 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:224382 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
