Least Privilege
Everything on SkillVeris tagged Least Privilege — collected across the glossary, study notes, blog, and cheat sheets.
11 resources across 1 library
Interview Questions(11)
What Techniques Prevent SQL Injection?
SQL injection is prevented primarily by using parameterized queries (or prepared statements) so user input is always bound as data and never concatenated into…
What is Role-Based Access Control (RBAC) in Database Security?
Role-Based Access Control (RBAC) is a database security model where permissions are granted to named roles rather than to individual users, and users gain thei…
What Are Connection String Security Best Practices?
Connection string security means never embedding raw credentials in source code or config files checked into version control, instead injecting host, username,…
What is the Principle of Least Privilege for Database Access?
Least privilege for database access means every user, service, or application account is granted only the specific permissions it needs to do its job — nothing…
What Are the Basic Security Mechanisms in an Operating System?
An operating system enforces security through authentication (verifying who a user is), authorization (deciding what an authenticated user may do via permissio…
What Is Capability-Based Security in an Operating System?
Capability-based security is an access control model where a process’s right to perform an operation on an object is represented by an unforgeable token, calle…
What is Linux Capability Dropping and Why Does It Matter?
Linux capabilities split the traditionally all-or-nothing power of the root user into dozens of independent, fine-grained privileges — like CAP_NET_BIND_SERVIC…
What is Kubernetes RBAC and How Does It Work?
Kubernetes RBAC (Role-Based Access Control) is an authorization mechanism that grants subjects — users, groups, or service accounts — permission to perform spe…
What is a Kubernetes ServiceAccount?
A Kubernetes ServiceAccount is an identity that Pods use to authenticate to the Kubernetes API server, distinct from user accounts that human operators use, an…
How Do You Manage Secrets in a DevOps Pipeline?
Secrets management means storing credentials, API keys, and certificates in a dedicated secrets store with encryption, access control, and audit logging, then…
What Are the Key Principles of Container Security?
Container security means hardening every layer of the container lifecycle — the base image, the build process, the runtime configuration, and the host kernel —…