Hello's We have an ERP app whose data store is SQL. A front end web application has been created that will write data to this SQL database. From a security standpoint I'm worried about exposing the ERP database to the front end web application. What are the best practices for such situations? I have read a few articles on the dangers of SQL injection threats, and this increases my worries. What do other organizations that have centralized their information /data in ERP systems do? Do they expose these databases and if they do what security measures do they have in place? Any advice, insight, documentation will be highly appreciated. many thanks Sky.
