WAFs, DAMs and IPSs - what do you use?

  • I'm hoping to expand on some information from this post:

    http://www.sqlservercentral.com/Forums/Topic720076-359-1.aspx

    I've been tasked to assess software that will help secure our databases. I realize this is an open ended topic...we're looking for solutions that fall under the categories of

    Web Application Firewalls (WAF)

    Database Application Monitoring (DAM)

    Intrusion Protection System (IPS) or Instrusion Detection Systems (IDS)

    I support databases that are accessed from both home grown applications and vendor supplied apps, so have little control over the code. Our first concern is SQL injection, but this is only one of many fronts we'd like to secure.

    Would love to hear what our community is using, will help me with my search.

    TIA

    ----------------------------------------------------------------------------
    Sacramento SQL Server users group - http://sac.sqlpass.org
    Follow me on Twitter - @SQLDCH
    ----------------------------------------------------------------------------

    Yeah, well...The Dude abides.
  • Just giving this a bump, hard to believe that the community is not using this type of software. Would love to hear from y'all.

    ----------------------------------------------------------------------------
    Sacramento SQL Server users group - http://sac.sqlpass.org
    Follow me on Twitter - @SQLDCH
    ----------------------------------------------------------------------------

    Yeah, well...The Dude abides.
  • We've just implementing dbProtect and a modified version of appdetective pro for auditing. Looks promising so far, if not a bit faffy to install and configure.

    _________________________________________________________________________________SQLGeordieWeb:- Jarrin ConsultancyBlog:- www.chrisjarrintaylor.co.ukTwitter:- @SQLGeordie

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply