Page 1 of 1

Planning a shared system and concerned about the security

Posted: Wed Apr 25, 2012 6:00 am
by AGISB
I am planning a shared recource website running on php and mysql.

You have a php mysql part that should run on many servers that outputs data and input can be made. That input is shared among the network of other sites which together will be the project.
That Part can be run by many different people.

The network is duplicated on a control server, where the search functions reside and admin task can be made in a secure environment.

Obviously my problem is the shared part, that could be tampered with by a skilled person. It should not be possible to infect the network, as all data is filtered thru the control server, but e.g. the user of the shared user could implant vicious code directly into his database to infect his side with e.g. malware.

As the whole runs at one network, the malware distribution could badmoth the whole service.

I come up with a lot of solutions, but fact seems to be: if the guy on the shared system is willing and skilled he could tamper with his part. I can do a lot to make it difficult to do, but the fact remains or am I overlooking something?

The best solution to come up with is, to check the persons who take part in the system and know where they are so the risk is limited.

Are there any concepts that can help me?