Jump to content

  •  

FileMaker Security Blog



An Exploit-Based Approach To Providing FileMaker Platform Security

Posted by Steven H. Blackwell, 15 July 2014 - - - - - - · 1,091 views

Over the past dozen years, I have discussed in a number of venues the necessity for robust security practices and the techniques needed to implement them on the FileMaker Platform. Such discussions have as their underlying framework a fairly traditional Information Security paradigm.

There are Threat Agents who seek to initiate Exploits or Threats that...


Protect Your FileMaker Server and Files From A Vulnerability

Posted by Steven H. Blackwell, 01 April 2014 - * * * * * · 1,205 views

I have recently learned that there may be any number of FileMaker Server installations world-wide that are hosting files that open automatically without credentials challenge to the [Full Access] Privilege Set. The default-installed FileMaker Server Sample File is one of these; however, there are others.

This is not such a good practice. Such files off...


FMI Security Webinar

Posted by Steven H. Blackwell, 12 February 2014 - - - - - - · 741 views

FMI Security Webinar

On February 11th FileMaker, Inc. presented two webinars on FileMaker Platform Security. I am highly gratified that FileMaker, Inc. did this. These webinars, conducted by Consulting Systems Engineer Rosemary Tietge, clearly laid out the case for following Best Practices for securing files and their data across all elements of the...


Newest Version of FileMaker Platform Brings Significant Major Security Enhancement

Posted by Steven H. Blackwell, 03 December 2013 - - - - - - · 2,346 views

Newest Version of FileMaker Platform
Brings Significant Major Security Enhancement

FileMaker, Inc. today released the latest version of its Platform: FileMaker® Pro 13, FileMaker® Pro 13 Advanced, FileMaker® Server 13, and FileMaker® GO 13. 

This release brings many significant new features to the platform including the innovative FileMaker W...


Default Security Settings in FileMaker Pro

Posted by Steven H. Blackwell, 10 September 2013 - - - - - - · 793 views

From time to time people ask me why the Privilege Set bits in FileMaker Pro are all turned OFF by default. Would it not be easier and better for security purposes, the questions go, if all these were turned ON instead?

The answer is No ; here is why. First, some history. Prior to the introduction of FileMaker® Pro 7 in March 2004, all of the privileg...


FileMaker Security Survey Reveals Interest and Some Confusion

Posted by Steven H. Blackwell, 30 July 2013 - - - - - - · 590 views

FileMaker Security Survey Reveals Interest and Some Confusion
 
During early and mid-July, I posted on FM Forums a multi-question survey asking people about their use of various FileMaker product security features. I also asked for any comments or for any recommendations they might have for enhancing product security features.

The results are intere...


Assessing Threats, Vulnerabilities, and Risks to FileMaker Pro Databases

Posted by Steven H. Blackwell, 05 June 2013 - * * * * - · 1,542 views

Assessing Threats, Vulnerabilities, and Risks to
FileMaker® Pro Databases



Hosted FileMaker Pro databases are susceptible to unauthorized access, manipulation, destruction, and other forms of compromise. Developers and server administrators need to understand how to assess threats and the risks of those risk’s occurring as various threat agents seek...


The Beginning Of Wisdom

Posted by Steven H. Blackwell, 06 May 2013 - * * * * * · 815 views

“What's in a name? that which we call a rose,
  
By any other name would smell as sweet.”  

—Juliet (Romeo and Juliet , Act II, Scene 2, William Shakespeare)—  

“The beginning of wisdom is to call things by their proper name.”  

—Confucius—  


An entire series of recent studies  published by well-known and well renown international security analysis...


Ten Frequently Encountered Practices That Can Compromise Security of FileMaker Pro Files

Posted by Steven H. Blackwell, 09 April 2013 - - - - - - · 1,819 views

Ten Frequently Encountered Practices  
That Can Compromise Security of FileMaker Pro Files  

April 9th 2013


In our last installment, I noted:

“In 2013, I will be focusing on promoting the goal of achieving that understanding [meaning understanding FileMaker Server] along with the parallel and related one of overcoming a similar lack of understanding...


Unskilled and Unaware

Posted by Steven H. Blackwell, 08 January 2013 - * * * * * · 1,229 views

Unskilled and Unaware Nearly fourteen years ago two Cornell University psychologists authored a definitive study titled Unskilled and Unaware of It . Their core thesis was that persons who were unskilled in any number of domains suffered a dual burden. They reach erroneous conclusions and make incorrect and unfortunate choices on the one hand. And second,...






FMForum Advertisers