Thu, 09 May 2024 13:02:54 +0000 en-US hourly 1 https://wordpress.org/?v=6.5.2 https://www.percona.com/blog/wp-content/uploads/2023/02/cropped-percona-favicon-32x32.png 32 32 76301791 https://www.percona.com/blog/mysql-database-security-best-practices/ https://www.percona.com/blog/mysql-database-security-best-practices/#respond Thu, 09 May 2024 13:02:54 +0000 https://www.percona.com/blog/?p=96285 Have you ever read a news story about a major company experiencing a data breach that exposed millions of customer records? These breaches can be devastating, causing significant financial losses, reputational damage, and even legal repercussions. Unfortunately, MySQL databases, one of the most popular relational database management systems, is at the heart of many critical […]]]> https://www.percona.com/blog/mysql-database-security-best-practices/feed/ 0 96285 https://www.percona.com/blog/securing-your-mongodb-database-essential-best-practices/ https://www.percona.com/blog/securing-your-mongodb-database-essential-best-practices/#respond Mon, 06 May 2024 13:17:22 +0000 https://www.percona.com/blog/?p=96153 MongoDB offers powerful features and scalability, but like any database system, it has security challenges that must be addressed to protect sensitive data as well as comply with regulatory standards like GDPR, HIPAA, PCI DSS, and AM/ATF. A single breach can significantly impact a business, and failure to establish sufficient security measures can result in […]]]> https://www.percona.com/blog/securing-your-mongodb-database-essential-best-practices/feed/ 0 96153 https://www.percona.com/blog/ldap-authentication-in-pgbouncer-through-pam/ https://www.percona.com/blog/ldap-authentication-in-pgbouncer-through-pam/#respond Tue, 30 Apr 2024 14:46:30 +0000 https://www.percona.com/blog/?p=96054 There are many cases where external connection poolers like pgBouncer become unavoidable despite the costs and complexities associated with them. PgBouncer is one of the most popular external connection poolers for PostgreSQL. It is thin and lightweight, so it doesn’t have built-in authentication features like LDAP, which is essential for many enterprises. Luckily, pgBouncer has […]]]> https://www.percona.com/blog/ldap-authentication-in-pgbouncer-through-pam/feed/ 0 96054 https://www.percona.com/blog/postgresql-database-security-best-practices/ https://www.percona.com/blog/postgresql-database-security-best-practices/#respond Mon, 22 Apr 2024 13:59:22 +0000 https://www.percona.com/blog/?p=95970 When data is everything, the sophistication of cybersecurity threats casts a shadow over the world of data security, including for those using PostgreSQL as their database of choice. Although renowned for its reliability, flexibility, and strong feature set, in the face of relentless cyber-attacks, even users of PostgreSQL can find themselves in a situation where […]]]> https://www.percona.com/blog/postgresql-database-security-best-practices/feed/ 0 95970 https://www.percona.com/blog/protect-your-postgresql-database-with-pg_tde-safe-and-secure/ https://www.percona.com/blog/protect-your-postgresql-database-with-pg_tde-safe-and-secure/#respond Tue, 09 Apr 2024 12:41:11 +0000 https://www.percona.com/blog/?p=95493 Tech Preview release of pg_tde now availableAs organizations collect, store, and analyze vast amounts of data, ensuring its confidentiality and integrity becomes a top priority. For PostgreSQL users, the tech preview release availability of the new encryption extension pg_tde delivers unmatched protection for vital data assets.What is pg_tde?pg_tde, developed by Percona, is an open source […]]]> https://www.percona.com/blog/protect-your-postgresql-database-with-pg_tde-safe-and-secure/feed/ 0 95493 https://www.percona.com/blog/percona-pg_tde-project-keyring-options/ https://www.percona.com/blog/percona-pg_tde-project-keyring-options/#respond Mon, 01 Apr 2024 13:17:52 +0000 https://www.percona.com/blog/?p=95492 Percona’s pg_tde project brings a long-needed ability to encrypt data to PostgreSQL transparently. We are actively asking you to test this code to help build a better project. So please test pg_tde!As you have probably read in earlier blogs on pg_tde, it depends on a keyring.Two keysEncrypting the data requires two types of keys.The first […]]]> https://www.percona.com/blog/percona-pg_tde-project-keyring-options/feed/ 0 95492 https://www.percona.com/blog/using-pam-with-sasl-in-percona-server-for-mongodb/ https://www.percona.com/blog/using-pam-with-sasl-in-percona-server-for-mongodb/#respond Wed, 27 Mar 2024 14:03:47 +0000 https://www.percona.com/blog/?p=95210 Percona Server for MongoDB currently has several external authentication options, such as LDAP with SASL, LDAP, Kerberos, and AWS IAM. What is amazing is that SASL can authenticate with Pluggable Authentication Modules (PAM) too. This means that you still have additional external authentication options to choose from through PAM libraries.For a quick demonstration of PAM […]]]> https://www.percona.com/blog/using-pam-with-sasl-in-percona-server-for-mongodb/feed/ 0 95210 https://www.percona.com/blog/best-practices-for-database-security/ https://www.percona.com/blog/best-practices-for-database-security/#comments Mon, 25 Mar 2024 14:01:21 +0000 https://www.percona.com/blog/?p=95377 Anyone working with databases knows that data is the driving force behind every online activity, and data security is always a top concern. Seeing as how they store and manage vast amounts of sensitive and valuable data, ranging from financial records to personal information and intellectual property, a lapse in database security measures can trigger […]]]> https://www.percona.com/blog/best-practices-for-database-security/feed/ 1 95377 https://www.percona.com/blog/percona-xtrabackup-8-0-28-supports-encrypted-table-backups-with-aws-kms/ https://www.percona.com/blog/percona-xtrabackup-8-0-28-supports-encrypted-table-backups-with-aws-kms/#respond Mon, 18 Mar 2024 14:47:27 +0000 https://www.percona.com/blog/?p=95128 Percona XtraBackup (PXB) version 8.0.28 supports taking backups for the encrypted tables in your MySQL database using the AWS Key Management Service. For setting up data-at-rest encryption using AWS key management service, please see Configuring Keyring for Encryption Using AWS Key Management Service in Percona Server for MySQL.In this blog post, we will discuss how […]]]> https://www.percona.com/blog/percona-xtrabackup-8-0-28-supports-encrypted-table-backups-with-aws-kms/feed/ 0 95128 https://www.percona.com/blog/securing-percona-everest-with-ingress-and-cert-manager/ https://www.percona.com/blog/securing-percona-everest-with-ingress-and-cert-manager/#respond Wed, 21 Feb 2024 13:52:31 +0000 https://www.percona.com/blog/?p=94333 According to CNCF surveys, security is always among the top concerns for Kubernetes practitioners and platform engineers. Percona Everest — an open source cloud-native database platform –  is now in Alpha stage, but it is important to set it up properly from day 0. In this blog post, we will explain how to run Everest UI […]]]> https://www.percona.com/blog/securing-percona-everest-with-ingress-and-cert-manager/feed/ 0 94333 https://www.percona.com/blog/are-your-mysql-users-using-password-or-thebossisajerk-as-passwords/ https://www.percona.com/blog/are-your-mysql-users-using-password-or-thebossisajerk-as-passwords/#respond Tue, 06 Feb 2024 14:17:08 +0000 https://www.percona.com/blog/?p=94102 Are your MySQL users using ‘password’, ‘s3cr3t’, or ‘thebossisajerk’ as their passwords? Easy-to-guess passwords can be disastrous to the security of your data, but there is a way to exclude inappropriate words or phrases from being used. The first step is to compile a list of words and phrases you want to exclude, and that […]]]> https://www.percona.com/blog/are-your-mysql-users-using-password-or-thebossisajerk-as-passwords/feed/ 0 94102 https://www.percona.com/blog/transparent-data-encryption-tde/ https://www.percona.com/blog/transparent-data-encryption-tde/#respond Fri, 02 Feb 2024 13:00:23 +0000 https://www.percona.com/blog/?p=84323 This blog was originally published in December of 2022 and updated in February of 2024.Encrypting data at rest in a database management system (DBMS) refers to securing data by encrypting it when it is not being used or accessed. This is often done to protect sensitive data from unauthorized access or theft. With transparent data […]]]> https://www.percona.com/blog/transparent-data-encryption-tde/feed/ 0 84323 https://www.percona.com/blog/configuring-keyring-for-encryption-using-aws-key-management-service-in-percona-server-for-mysql/ https://www.percona.com/blog/configuring-keyring-for-encryption-using-aws-key-management-service-in-percona-server-for-mysql/#respond Fri, 05 Jan 2024 14:08:09 +0000 https://www.percona.com/blog/?p=93286 The AWS KMS component is now available in Percona Server for MySQL starting from version 8.0.30. This addition enables data-at-rest encryption by utilizing the AWS KMS component, providing the functionality to create and manage cryptographic keys across AWS services.How do we set up encryption using AWS KMS?You should only load a keyring component with a […]]]> https://www.percona.com/blog/configuring-keyring-for-encryption-using-aws-key-management-service-in-percona-server-for-mysql/feed/ 0 93286 https://www.percona.com/blog/mysql-general-tablespaces-a-powerful-storage-option-for-your-data/ https://www.percona.com/blog/mysql-general-tablespaces-a-powerful-storage-option-for-your-data/#comments Thu, 04 Jan 2024 14:48:51 +0000 https://www.percona.com/blog/?p=93213 Managing storage and performance efficiently in your MySQL database is crucial, and general tablespaces offer flexibility in achieving this. This blog discusses general tablespaces and explores their functionalities, benefits, and practical usage, along with illustrative examples.What are MySQL general tablespaces?In contrast to the single system tablespace that holds system tables by default, general tablespaces are […]]]> https://www.percona.com/blog/mysql-general-tablespaces-a-powerful-storage-option-for-your-data/feed/ 1 93213 https://www.percona.com/blog/audit-drop-statements-in-percona-server-for-mysql/ https://www.percona.com/blog/audit-drop-statements-in-percona-server-for-mysql/#respond Tue, 02 Jan 2024 14:17:52 +0000 https://www.percona.com/blog/?p=93025 Managing database servers involves different aspects, among which security is critical. We know that we should always grant the minimal required permissions to the different user accounts in the database, as having a user with high-level permission can lead to unexpected results, such as having an index drop affecting the system performance or even more […]]]> https://www.percona.com/blog/audit-drop-statements-in-percona-server-for-mysql/feed/ 0 93025 https://www.percona.com/blog/postgresql-database-security-what-you-need-to-know/ https://www.percona.com/blog/postgresql-database-security-what-you-need-to-know/#comments Tue, 02 Jan 2024 12:00:58 +0000 https://www.percona.com/blog/?p=73259 This blog was published in January of 2021 and was updated in January of 2024.Database security, particularly in the context of PostgreSQL, involves safeguarding multiple parts of the database ecosystem. It is a vast topic because, with databases, we need to secure everything, not just the database node. The diagram below illustrates the key components […]]]> https://www.percona.com/blog/postgresql-database-security-what-you-need-to-know/feed/ 1 73259 https://www.percona.com/blog/automated-percona-monitoring-and-management-upgrades/ https://www.percona.com/blog/automated-percona-monitoring-and-management-upgrades/#respond Thu, 24 Aug 2023 13:50:38 +0000 https://www.percona.com/blog/?p=90482 Welcome to our guide on keeping your Percona Monitoring and Management (PMM) Server and Client up-to-date. In this blog post, we’ll walk you through a method to ensure your PMM solution runs the latest and most secure versions. It’s important to note that this is just one option among many, and we’re eager to hear […]]]> https://www.percona.com/blog/automated-percona-monitoring-and-management-upgrades/feed/ 0 90482 https://www.percona.com/blog/mysql-8-0-34-improved-password-management-by-defining-the-change-characters-count/ https://www.percona.com/blog/mysql-8-0-34-improved-password-management-by-defining-the-change-characters-count/#respond Thu, 10 Aug 2023 12:24:08 +0000 https://www.percona.com/blog/?p=90052 MySQL 8.0.34 brings us a new password validation parameter. Using this, we can control the minimum number of characters in a password that a user must change before validate_password accepts a new password for the user’s account. In this blog, I offer a few scenarios showing how the parameter validate_password.changed_characters_percentage affects user password changes.RequirementTo make […]]]> https://www.percona.com/blog/mysql-8-0-34-improved-password-management-by-defining-the-change-characters-count/feed/ 0 90052 https://www.percona.com/blog/securing-mongodb-top-five-security-concerns/ https://www.percona.com/blog/securing-mongodb-top-five-security-concerns/#respond Tue, 01 Aug 2023 16:08:40 +0000 https://www.percona.com/blog/?p=70498 https://www.percona.com/blog/securing-mongodb-top-five-security-concerns/feed/ 0 70498 https://www.percona.com/blog/pmm-modernized-enterprise-grade-foundation https://www.percona.com/blog/pmm-modernized-enterprise-grade-foundation#respond Mon, 03 Jul 2023 18:56:08 +0000 https://www.percona.com/blog/?p=89009 With Enterprise Linux 7 nearing its end-of-life date, the Percona Monitoring and Management (PMM) team has done a significant update to the base operating system we build our images on top of.  For several years now, PMM has been built on an Enterprise Linux 7 (EL7) base, specifically CentOS 7.  Even though it provided a […]]]> https://www.percona.com/blog/pmm-modernized-enterprise-grade-foundation/feed/ 0 89009