Quote:
Originally Posted by pushipu
Firewalls will not help you avoid this.. let's say tested and worked (got hacked)...
|
not just setting firewall
u need to be analytic and think of what a security hold can be prevented or at least reduce its power
firewall is just step 1, if admins on server think keep making db with sa,1234 as login, this is a big problem
second, the whole cert issue can be solved on a very easy way
third, make backups(XD)
fourth, try hacking yourself to test server security
i could keep going mentioning stuff, but i made my point, firewall is not the solution, but someone that realize of security issues on server