Michael Bell wrote:

> I want to setup a web server on the Internet that communicates through
> our firewall to our internal db2 server (DB2 V8.2, Linux, Apache, PHP).
> I'm going to restrict all traffic from the web server via
> portforwarding, and will ensure that the web server is secure. The web
> server will only call stored procedures, and will have limited access to
> the database. As a precaution, I want to encrypt the communications
> between db2 and Apache in the event that another one of my external
> boxes is comprimised. I will be working through a managed switch, but
> that doesn't guarantee security. My question is this, does db2 provide
> a way to encrypt communications, or do I need to use something like
> stunnel? As far as I can tell, the SERVER_ENCRYPT only secures the
> password during authentication.

DB2 came out with quite a few new options with 8.2, including data
encryption:

http://publib.boulder.ibm.com/infocenter/db2help/topic/com.ibm.db2.udb.doc/core/c0011658.htm?resultof=%22%65%6e%63%72%79%70%74%22%20
and
http://publib.boulder.ibm.com/infocenter/db2help/topic/com.ibm.db2.udb.doc/admin/c0005435.htm


ken farmer



DB2 & UDB email list listserv db2-l LazyDBA home page