Limiting application's database size

From: Thorpe, Jason (TAD) (Jason.Thorpe_at_fta.dot.gov)
Date: 06/28/04

  • Next message: Scovetta, Michael V: "RE: ASP security in HTML pages" 
    To: webappsec@securityfocus.com, security-basics@securityfocus.com
Date: Mon, 28 Jun 2004 09:03:39 -0400

    I have a database server that contains several applications. One of the
    applications allow users to enter information into the database without
    being authenticated. My concern is that a malicious script could quickly
    increase the size of the database and thus taking all free disk space on the
    server. Is there a way to limit the size of the database so that it will
    not affect the other applications? Or does anybody have any suggestions on
    a way to handle this situation.

    DB Server: MS SQL Server, IIS

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

  • Next message: Scovetta, Michael V: "RE: ASP security in HTML pages"

    Relevant Pages

    • Creating/Altering Database Schemas via Code
      ... to create/alter the database for a suite of ... the server in an INI file) ... I have never heard of major applications (a suite of at least 9 client ...
      (microsoft.public.vstudio.general)
    • Re: System Architecture / .NET Remoting
      ... application server" Also, I was trying to determine if the best way ... have no problem sharing your SOA amongst many applications. ... layer. ... ignorant of anything to do with database connections and the like. ...
      (microsoft.public.dotnet.languages.csharp)
    • Re: Data source options
      ... This is pretty much how FlashConnect was designed to operate. ... FlashConnect executable, referenced in the URL, resides on the web server ... > browser-based database application where the backing database is not ... > If you look at various rich internet applications, ...
      (comp.databases.pick)
    • I cannot add a project to Source Save
      ... I have a server that has Windows 2003 Server where I develop .NET ... In Visual Source of the server I created an ad-hoc database, ... I need to start developing applications in ASP so I have ... VSS database), but when I tried to add a web project to Visual Studio 6.0 I ...
      (microsoft.public.vstudio.sourcesafe)
    • SQL Server License Control and Management
      ... Today many applications (SAP, SIEBEL, MANUGISTICS, PEOPLESOFT, and so ... on) does not have a client direct access to connect to the database. ... They use an Application Server that has only one connection to the ...
      (comp.databases.ms-sqlserver)