> Personally I would lean toward making
> the bulk of security within the
> application so to simplify everything - the
> database would do what it
> does best - store and manipulate data - and the
> application would be the
> single point of entry. Protect the servers - keep
> the applications (like
> ssh, php, apache, your application) updated and make
> sure you have good
> and frequent backups.
Thank you for your reply.
Anyone else? How do you "secure" your db used by
webapps?