Home page logo

webappsec logo WebApp Sec mailing list archives

RE: Limiting application's database size
From: "Andrew Shore" <andrew.shore () holistecs com>
Date: Mon, 28 Jun 2004 16:12:19 +0100

Set the database as a fixed size and don't let it grow automatically.

That way the database can not get bigger than its initial size.

Andrew Shore
Senior Security Specialist
DDI. 01302 308 165
andrew.shore () holistecs com
Company Number 04943010
VAT Number 828 8635 82
Holistic Technologies Ltd
Unit 7 Shaw Wood Business Park
Shaw Wood Way
South Yorkshire
T. 0870 240 1442
F. 0870 240 1443

-----Original Message-----
From: Thorpe, Jason (TAD) [mailto:Jason.Thorpe () fta dot gov] 
Sent: 28 June 2004 14:04
To: webappsec () securityfocus com; security-basics () securityfocus com
Subject: Limiting application's database size

I have a database server that contains several applications.  One of the
applications allow users to enter information into the database without
being authenticated.  My concern is that a malicious script could
increase the size of the database and thus taking all free disk space on
server.  Is there a way to limit the size of the database so that it
not affect the other applications?  Or does anybody have any suggestions
a way to handle this situation.

DB Server: MS SQL Server, IIS

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]