Knowledge Base

Articles tagged as security

Creating and configuring database-local roles

Neo4j 4.0 introduced advanced security features in the form of role-based access controls, much needed, especially with the introduction of multiple database functionality. These controls can be accessed by administrators…

Read more

Explanation of error "javax.net.ssl.SSLException: Received fatal alert: certificate_unknown"

When connecting to a Neo4j instance with the Neo4j Browser, the following error may be logged in the $NEO4J_HOME\logs\debug.log This is usually as a result of either a bad certificate…

Read more

LDAP Error: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

When configuring LDAP with certificates you may encounter the following issue: The problem appears when your server uses a self-signed certificate. To workaround it, you can add this certificate to…

Read more

Protecting against Cypher injection

What is Cypher injection? Cypher injection is a way for maliciously formatted input to jump out of its context, and by altering the query itself, hijack the query and perform…

Read more

Protecting against Server Side Request Forgery (SSRF)

What is SSRF? Server-side request forgery (SSRF) vulnerabilities let an attacker send crafted requests from the back-end server of a vulnerable web application. Criminals usually use SSRF attacks to target…

Read more

Resolve TLS certificate errors

TLS encryption is required everywhere. This is a compilation of few errors you can expect while configuring your server. openssl command is required to diagnose or manipulate the certificates. Check…

Read more

TLS/SSL Configuration for Specific Ciphers

Per documentation: dbms.ssl.policy.<policyname>.ciphers is by default set to the Java platform default allowed cipher suites, which can also be explicitly set to any specific ciphers (separated by ",") to further…

Read more