| Subject | Re: [ib-support] Re: IB security <> FB security |
|---|---|
| Author | Daniel Rail |
| Post date | 2002-03-08T10:53:15Z |
At 08/03/2002 06:25 AM, you wrote:
user is connecting from a remote location over the internet, which he/she
doesn't have to logon the server itself, except FB? We can't only think of
users on a LAN. We have to think this out more thoroughly. It could
happen that the external file is used by more than one user.
Also, I think there should be privileges on who can create/drop an external
file. I can see the administrator and the owner of the database having
those privileges and can assign them to other users.
Gary, I don't dismiss your proposal, this is a brainstorm to find a solution.
Daniel Rail
Senior System Engineer
ACCRA Group Inc. (www.accra.ca)
ACCRA Med Software Inc. (www.accramed.ca)
>It might be worthwile considering mapping OS users to Interbase usersWhat happens when FB is used for a web server? Also, what happens if the
>so Interbase can apply the OS privilages to file. This would do away
>with the proposed modifications to EXTERNAL_FILE_DIRECTORY
>configuration. The solution would only require a child table linked
>to the USERS table (in isc4.gdb).
user is connecting from a remote location over the internet, which he/she
doesn't have to logon the server itself, except FB? We can't only think of
users on a LAN. We have to think this out more thoroughly. It could
happen that the external file is used by more than one user.
Also, I think there should be privileges on who can create/drop an external
file. I can see the administrator and the owner of the database having
those privileges and can assign them to other users.
Gary, I don't dismiss your proposal, this is a brainstorm to find a solution.
Daniel Rail
Senior System Engineer
ACCRA Group Inc. (www.accra.ca)
ACCRA Med Software Inc. (www.accramed.ca)