Tag: security

Improved security in Couchbase 4.5: SCRAM-SHA

Security is important to us, here at Couchbase. I'd like to draw your attention to a new security feature in Couchbase 4.5 that might otherwise go unnoticed: SCRAM-SHA (pronounced like 'scram-shaw').     (Scram Image Licensed through Create Commons via...

Hashing Passwords Stored in Couchbase Server with Node.js

Why You Should Hash All passwords should be hashed before entering a database because you have to consider the scenario where some malicious user attempts to gain entry into your data. Passwords are sensitive pieces of information that you don’t...

The Security Tipping Point

We are really excited about our partnership with Vormetric and welcome the below guest blog post by Michael Rothschild from Vormetric.    I remember in the heady days of the dot.com boom where people were just migrating off their 56.6K...

Guest post from CenterEdge Software: Couchbase and N1QL Security

Note: this is a guest post by Brant Burnett of CenterEdge Software, a company which developes POS and specialty software for the amusement park, leisure and entertainment industries. Overview N1QL is an incredibly powerful new tool which will help to...

Heartbleed Bug and Couchbase Server

Security should be at the heart of any enterprise product and we take security of our products seriously. Recently, a serious vulnerability (a.k.a Heartbleed) was discovered in the OpenSSL library and because Couchbase Server has some cryptographic components, we wanted...

IPTables Firewall Settings for Couchbase DB and Couchbase Mobile Sync_gateway

It is all too common for people to just turn off IPtables instead of actually figuring out what ports to open. I have to admit I have done it myself. Well we need to stop that. IPtables is our friend, really....

Poodle bites and ends SSL3

SSL version 3 is no longer secure. Recently, a new vulnerability in the SSL v3 protocol called the ‘Poodle attack’ was discovered by folks at Google. At Couchbase, since we take the security of our products seriously, we wanted you...