Subject | RE: [IBDI] Is this true? Can steal GDB file image using an external table. |
---|---|
Author | Gerhardus Geldenhuis |
Post date | 2002-06-11T21:29:14Z |
Hi
Should FB not be configured by default to not allow metadate changes for
users except for sysdba? This way you start out secure and only if the
sysdba explicitly give you metadata access will you be able to change it.
Groete
Gerhardus
Should FB not be configured by default to not allow metadate changes for
users except for sysdba? This way you start out secure and only if the
sysdba explicitly give you metadata access will you be able to change it.
Groete
Gerhardus
> The security hole is a database that would allow a user to modify
> metadata
> without authorization - bad database design and out of the realm of the
> engine designers.
>
> Best regards
>
> Dalton