Half a Million Databases 'Have no Firewall'

"Major Security risk is enough to sustain another mass worm outbreak", writes Robert McMillan in COMPUTERWORLDUK.

According to UK-based security researcher David Litchfield, there are nearly half a million database servers exposed on the Internet without firewall protection. Litchfield looked at slightly more than 1 million randomly generated Internet Protocol (IP) addresses to see if he could access them on ports reserved for Microsoft SQL Server or Oracle's database. He found 157 Sql servers and 53 Oracle servers.

Litchfield plans to publish the 2007 version of the Database Exposure Survey next Monday on his Website at Databasesecurity.com.


From a Slashdot article posted this a.m.