| Subject | Re: [ib-support] Re: Database protection |
|---|---|
| Author | Nando Dessena |
| Post date | 2001-11-23T20:40:11Z |
Josce,
If yes, this is impossible (AFAIK SYSDBA connections can't and shouldn't
be restricted).
If not, it is flawed (replace isc4.gdb and voila le database à la
carte).
we're not talking about security at all. Perhaps obfuscation.
machine, which includes the data *and* the way to decrypt it.
Ciao
--
____
_/\/ando
> you would create a PasswordTable in your database. If thewould you lock out SYSDBA as well?
> server doesn't find a table "PasswordTable" it means that
> the database is not protected and everything would
> work as normally. If it finds one it will check the supplied
> username & password against the ones in the table to see
> if connection is allowed.
If yes, this is impossible (AFAIK SYSDBA connections can't and shouldn't
be restricted).
If not, it is flawed (replace isc4.gdb and voila le database à la
carte).
> b) the average person would not be able to poke around inYou should have said you were talking about the average person. Then
> the supplied SP's.
we're not talking about security at all. Perhaps obfuscation.
> Since the src code is open sourced the only real way toNo, the only way would be avoiding to let them get at the server
> protect it totally would be to use encryption.
machine, which includes the data *and* the way to decrypt it.
Ciao
--
____
_/\/ando