GreenSQL's Blog

GreenSQL- December 2, 2009

GreenSQL has just announced that version 1.2 of its database firewall will provide PostgreSQL databases with the same protection from SQL Injection already enjoyed by MySQL databases. GreenSQL version 1.2 is now available for download as Open Source software from the company’s website at http://www.greensql.net/download

PostgreSQL is a popular Open Source database in wide use by small to medium-sized businesses. Currently, there is no solution, either Open or Closed Source, that provides a database firewall for PostgreSQL databases. As a result, they may be vulnerable to SQL injection attacks, one of the most widespread ways for gaining access to sensitive information stored in a database and/or taking control of a host server.

SQL injection, widely used by criminals, tricks Web applications into providing protected information from a database by exploiting existing queries such as user sign-in verifications to do things they weren’t designed to do. This technique was the method used in the attack on Heartland Payment Systems, where hackers broke into a database of millions of credit card numbers.

The GreenSQL database firewall already prevents SQL Injection attacks on the most popular Open Source database, MySQL. Since its first release 30 months ago, over 25,000 copies of its software have been downloaded, making it the most popular database firewall available, bar none. The addition of native protection from SQL Injection to PostgreSQL databases will broaden GreenSQL’s appeal even more.

More information about the company is available on its website at http://www.greensql.net

Version 1.2 Provides Support for PostgreSQL

GreenSQL version 1.2 is now Available . In this version, GreenSQL providing native support for PostgreSQL databases for the very first time. In fact, GreenSQL will be the only database firewall available for protection of the many PostgreSQL databases currently in use.
With this release, we are proud to be making another major contribution to our Open Source community.
Is Your Copy of GreenSQL Up to Date?
From time to time, GreenSQL releases new versions of its software. This may be for many reasons, including:
* To be in sync with new versions of MySQL
* To add protection from newly discovered SQL Injection techniques
* To fix bugs
* To add new features to the management console
* To provide support for PostgreSQL databases
As users of GreenSQL, you understand the importance of protecting your information from SQL injection. Please take a moment to ensure that you are running the latest version of GreenSQL so that you can continue to have the highest possible level of protection for your databases. Download the latest version of GreenSQL now.
Document Your Compliance
Attacks on large organizations, such as President Obama’s website, are making the news, but do not be misled into thinking that small and medium-sized businesses are not a target. Criminals are now using automated SQL Injection attacks to target unprotected data bases, no matter their size.
There is a large market for stolen personal information. From common data such as addresses and phone numbers, to less accessible data such as lawsuit information and a military record, everything has its price. Do you know what information is being stored in the data bases on your networks?
If you are taking payments on the Web or are storing social security numbers, credit card numbers or other such sensitive information, you may be legally liable for taking steps to secure that information. The PCI Data Security Standard (PCI DSS) for payment account data security, the Health Insurance Portability and Accountability Act (HIPAA) for personal data, the Gramm-Leach-Bliley Act (GLBA) for personal financial information, the Statement on Auditing Standard 70 (SAS 70) from the American Institute of Certified Public Accountants – to name just a few – are standards and regulations that require appropriate measures to be taken to protect information.
If you have the responsibility for protecting sensitive records, we recommend that you document your efforts with GreenSQL Database Firewall.
Download NowGreenSQL DATABASE FIREWALL V 1.2 !
The GreenSQL Team