May 23, 2017 at 4:38 pm
My organization is looking to purchase a centralized logging tool, so that we can more quickly locate breaches, issues, etc. The setup of this tool requires the installation of a webserver on the database server. I'm not trained in webserver installation and management, so I have no grounds upon which to question this configuration. Does this strike any of you as odd, and can you think of any security issues I should be researching? Our database servers are behind the firewall, and are installed on a network segment which doesn't have access to the internet.
Thanks,
--=Chuck
May 24, 2017 at 3:36 am
chuck.forbes - Tuesday, May 23, 2017 4:38 PMMy organization is looking to purchase a centralized logging tool, so that we can more quickly locate breaches, issues, etc. The setup of this tool requires the installation of a webserver on the database server. I'm not trained in webserver installation and management, so I have no grounds upon which to question this configuration. Does this strike any of you as odd, and can you think of any security issues I should be researching? Our database servers are behind the firewall, and are installed on a network segment which doesn't have access to the internet.
Thanks,
--=Chuck
Answer lies in your question itself I guess , the webserver will sit normally on DMZ they might have access to internet and the application might be published.
Its always good to have separate servers for Web and Database and very minimal required access to DB server from Web .
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply