| Subject | Re: [ib-support] About SYSDBA |
|---|---|
| Author | Scott Taylor |
| Post date | 2002-07-19T14:49:46Z |
At 02:16 AM 19/07/2002, you wrote:
do before putting a live DB on the Internet. At least rename SYSDBA.
rights to remove accounts; don't give them to just anyone. Basic,
sensible, security practices come into play here.
found it), there is a pretty strait forward piece in there about database
security. Save me from reiterating the whole thing here. ;)
Scott.
>t seems that I can delete the user SYSDBA just like any other, by editingOf course you can. As a paranoid SysAdmin that would be the first thing to
>isc4.gdb directly, through IBConsole, using the security service like with
>the IBX.
do before putting a live DB on the Internet. At least rename SYSDBA.
> once this is done there is no way to access the server as anThat's fairly obvious. A quick reinstall will fix your lost admin account.
>administrator, and if SYSDBA is the only user there is no way to access the
>server at all.
>Is it normal to be able to delete SYSDBA that easily, and howChange the password from the default is a good start. You have to have the
>could I prevent this from happening.
rights to remove accounts; don't give them to just anyone. Basic,
sensible, security practices come into play here.
>My second question is related to theGo to IBPhoenix.com and find the file OpGuide.pdf (I think that's where I
>first, can I have nmore than one administrator user and how can I identify
>it let's say in the isc4.gdb? I've noticed it's userID value is null while
>it's 0, by default, for all the others is that right?
found it), there is a pretty strait forward piece in there about database
security. Save me from reiterating the whole thing here. ;)
Scott.