|Subject||Re: [Firebird-Architect] External engines - security|
On Monday 22 October 2007 19:03, Adriano dos Santos Fernandes wrote:
> Roman Rokytskyy escreveu:Do you want to say that UDF may be secure in one database, but insecure in
> >> GRANT USAGE ON LANGUAGE JAVA TO USER NORMAL_USER1 WITH GRANT OPTION;
> >> GRANT USAGE ON LANGUAGE DELPHI TO USER SUPER_USER1;
> > What exactly benefits do we get with such GRANT?
> > - This GRANT is useless if SUPER_USER1 does not get a chance to put his
> > DLL on the file system after convincing sysdba about the safety of the
> > code.
> It's not useless. Did you think current UDF security is good then?
> We can have two databases with two different owners, but there is only
> one place for UDF (and hence for external procedures).
> If a non-privileged user can guess (it could be one well known) the name
> of that module, he can use it.