Re: FN-FORUM: secure sites, encryption etc

date posted 3rd August 2004 22:29

On Tuesday 03 Aug 2004 8:28 pm, nick b wrote:
> >Oh, and consider using OpenBSD.
>
> considering. may not be an option though. is it much better than FreeBS=
D?

I think sparkes put it well.

> no specifics yet - no server, no application, no database. So early
> planning stages still, but security is one of the prime considerations
> for viability of the whole thing.
>
> Would you advise encrypting data and/or database content (I'm looking a=
t
> PHP's mcrypt module) even with all the best practices for security of
> the server? Isn't that what's done with c/card numbers usually?

If it's encrypted you've got to decrypt before you can use it... at which=
=20
point it's vulnerable.

All depends on what you're trying to protect and from whom...
I'm happy to consult on this one :-}

Here's a paper that may prove informative on a site that looks like=20
it definitely will be:
http://www.linuxsecurity.com/articles/server_security_article-9559.html