Tag Archives: databases

April 6, 2013


Focus on the data, not the database. Induction is a new kind of tool designed for understanding and communicating relationships in data. Explore rows and columns, query to get exactly what you want, and visualize that data in powerful ways.

I don’t have a Mac to test it on, but this seems great.

June 12, 2012

Security flaw in MySQL, MariaDB allows access with any password–just keep submitting it

A great writeup on the extreme security flaw found (and subsequently patched) in MySQL and MariaDB. Given a valid username, any database could be accessed simply by entering a false password enough times.

Because of the random key strings used, Golubchik said the probability of exploiting the flaw on any given attempt “is about 1/256”; with enough attempts, even using the same password over and over again, an attacker could gain access just by knowing a valid account name (such as “root”). Given that it takes less than a second to submit hundreds of login attempts, the hole essentially renders password protection worthless.

October 10, 2011

Today's acronym: SS2PL

SS2PL stands for strong strict two-phase locking; it’s a locking mechanism widely used in database systems today. It is based on the notion of two-phase locking:

  • Expanding phase: locks are acquired and none are released
  • Shrinking phase: locks are released and no new locks are acquired

In addition to the above requirements, SS2PL requires that both read and write locks are held until the transaction that acquired them has commited. Essentially, this means that there isn’t a shrinking phase — only an expanding phase. May I ask why, then, is it called strong strict two-phase locking and not something completely different?

I love computer science acronyms.

December 16, 2010
May 25, 2010


MongoDB bridges the gap between key-value stores (which are fast and highly scalable) and traditional RDBM systems (which provide rich queries and deep functionality).

The site has an interactive tutorial that is fantastic.

February 26, 2010