Postgres Plus SQL/Protect
Protect your Postgres data against multiple SQL virus injection techniques.
SQL/Protect is a module that allows a database administrator to protect Postgres databases from a variety of SQL injection attacks. SQL/Protect provides a DBA-managed layer of security in addition to normal database security policies by screening incoming queries for common SQL injection profiles. In addition, SQL/Protect can also be taught to accept learned 'friendly' queries and reject unfamiliar data request patterns.
Call +1 781-357-3390 (US and International) or 1-877-377-4352 (US Only) today!
DBA Managed SQL Injection Protection
Preventing attacks is normally the responsibility of the application developer, but with SQL/Protect, DBAs can now provide another layer of protection to prevent corruption or co-opting of the database.
Multiple Prevention Techniques
- Unauthorized Relations
- Utility Commands (e.g. DDL)
- SQL Tautology
- Unbounded DML
Role Based Flexibility
You can have protected and non-protected roles each covering a whole class of individual users. Each role can be customized for the type of injection attacks that are monitored and rejected.
Postgres based databases, have long been known to be the most secure open source databases! SQL/Protect adds another powerful layer of security inside and under control of the data center.
How do I try SQL/Protect?
There are two ways to try SQL/Protect:
- SQL/Protect is a feature of Postgres Plus Advanced Server v8.4. To try SQL/Protect, download Postgres Plus Advanced Server now!
- SQL/Protect is an add-on module delivered through StackBuilder which is included in the PostgreSQL One-click installer. Download PostgreSQL now!
What else can SQL/Protect do?
Three Protection Levels
- Learn mode teaches SQL/Protect the queries allowed for a role specific to your database application.
- Passive mode issues warnings but doesn't stop queries for staging and testing purposes.
- Active mode activates the SQL/Protect defenses and stops offending queries.
Once a role is running in active mode, SQL/Protect keeps track of each attempt of an attack. This allows you to review and analyze the frequency and type of attacks your database may be subjected to.
Installation is Easy and Fast!
SQL/Protect is already installed as part of Postgres Plus Advanced Server. In five minutes you can be configuring roles to be protected and well on your way to unmatched database security!
SQL/Protect works on Linux and Windows with:
- Postgres Plus Advanced Server version 8.4
- PostgreSQL v9.x (and the Mac too)