2. Reducing the Attack Surface

If an interface is not available to an attacker, it is clearly not available to be abused. Thus the first, and arguably most important, line of defense is to reduce the exposed interfaces to only those absolutely required.

In this lesson, you will learn how to:

	Use invoker's rights to reduce SQL injection vulnerability
	Reduce arbitrary inputs
	Strengthen database security

Estimated time to complete this lesson: 20 minutes