On Monday 22 October 2007 19:03, Adriano dos Santos Fernandes wrote:

> Roman Rokytskyy escreveu:
> >> GRANT USAGE ON LANGUAGE JAVA TO USER NORMAL_USER1 WITH GRANT OPTION;
> >> GRANT USAGE ON LANGUAGE DELPHI TO USER SUPER_USER1;
> >
> > What exactly benefits do we get with such GRANT?
> >
> > - This GRANT is useless if SUPER_USER1 does not get a chance to put his
> > DLL on the file system after convincing sysdba about the safety of the
> > code.
>
> It's not useless. Did you think current UDF security is good then?
>
> We can have two databases with two different owners, but there is only
> one place for UDF (and hence for external procedures).
>
> If a non-privileged user can guess (it could be one well known) the name
> of that module, he can use it.

Do you want to say that UDF may be secure in one database, but insecure in
another?