Oracle Database MySQL 5.6 Database Administrator — Question 4

A Mysql instance is running on a dedicated server. Developers access the server from the same network subnet. Users access the database through an application that is running on a separate server in a DMZ.
Which two will optimize the security of this setup?

Answer options

• A. Disabling connections from named pipes or socket files (depending on the operating system of the server)
• B. Running the server with – skip-networking specified
• C. Limiting logins to originate from the application server or the server’s subnet
• D. Starting the server with – bind- address=0.0.0.0 specified
• E. Installing Mysql on the application server, and running the database and application on the same server
• F. Enabling and using SSL for connections to the Mysql database EF

Correct answer:

Explanation

The correct options for optimizing security are C and F. Option C limits access to the database by ensuring that only the application server and the local subnet can connect, reducing exposure to potential attacks. Option F enhances security by encrypting data transmitted between the application and the database, preventing eavesdropping. The other options either disable necessary networking capabilities or could expose the database inappropriately.