| Subject | dynamic roles |
|---|---|
| Author | Mike Arace |
| Post date | 2001-12-30T17:21:23Z |
Hey everyone,
I heard that in Oracle there is a way of dynamically assigning roles at the
application level to prevent malicious users from being able to log in to
the database directly and see or do anything. While I understand that
anyone who could find their way into the database box could probably do
other nasty things without needing that capability, I was wondering if
firebird has similar facilities. From what I understand of the Oracle
approach, the role permissions are stored in the connection somehow, so that
in theory multiple people could log in with the same username and the
baddies still couldn't log in directly and do any damage.
Thanks,
Mike
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.
I heard that in Oracle there is a way of dynamically assigning roles at the
application level to prevent malicious users from being able to log in to
the database directly and see or do anything. While I understand that
anyone who could find their way into the database box could probably do
other nasty things without needing that capability, I was wondering if
firebird has similar facilities. From what I understand of the Oracle
approach, the role permissions are stored in the connection somehow, so that
in theory multiple people could log in with the same username and the
baddies still couldn't log in directly and do any damage.
Thanks,
Mike
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.