• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 702
  • Last Modified:

ASA Firewall and SQL issues

hi ASA Expert$$$$$$$$$$$$$$$$

how Cisco ASA can help to avoid the SQL Injection related issues.

is there any specific ACL.

please light it
0
osloboy
Asked:
osloboy
  • 2
2 Solutions
 
MrAliCommented:
SQL Injection is avoided by paramterizing your queries and avoiding dynamic SQL server.  ASA firewalls will help with overall network security, but not injection attacks, short of just blocking potential attacks on the server.  SQL Server default TCP port is 1433, if you don't need it open to the outside world, block it in your firewall.  I suspect you might mean something other than injection attacks though, is that correct?
0
 
Garry GlendownConsulting and Network/Security SpecialistCommented:
There may be some attack vectors you could cover with the IDS card,  though do not expect an automated system to fix careless programming on the side of the website developers ...
0
 
osloboyAuthor Commented:
MrAli: SQL injections, XSS, XSF etc. e.g "SQL Query in HTTP Request"

point is, as Proactive Measure what an Network Admin can do on ASA to be ready and avoid the SQL Injections.

even if you have good IPS, some time IPS can be Fooled

0
 
osloboyAuthor Commented:
no comments
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now