--- In IBDI@y..., "Jon Hall" <jonhall@o...> wrote:
>... However in SQL Server, the sp's and
> triggers are attached to the individual database and I dont think
they are
> viewable to anyone other than their owner.

They are viewable to any user registered in ISC4.GDB.

> I think the ability for anyone to add tables to any database other
than
> their own, is a large security hole though. Have you actually tried
this

Any user registered in ISC4.GDB can do this.

It means we must to make care no unwanted connect can scan file
structure and know where and what databases are placed.

Best regards.