Database security basics

Text

.backup mybackup.db

SQL injection

some_var = "Ivaylo"

some_var = " asd; DROP DATABASE;"

update_sql = "SELECT * WHERE username = " + some_var
cursor.executescript(update_sql)

Users passwords !

Hashing

Algorithms:

 

- MD5

- SHA128

- SHA256

- ...

 

Even better -"salt" hashing

Must watch - https://youtu.be/8ZtInClXe1Q

Common security issues with Databases

By Hack Bulgaria

Common security issues with Databases

  • 1,074