Hi Martijn,

we met at the firebird conference in Fulda, I was the one who won a
licence for DB Workbench, thanks a lot it is helping very much to
get into it. Unthinkable to work without it!

You said that unless you don't have the SYSDBA password you can't
have access to the data. But what about copying the database file to
another machine, connecting as any database user in DB Workbench and
do "Exract DDL" including grants? Then you can see the name of the
authorized user in that database. You then can create such a user on
the machine and - there you go!

Is that scenario I described possible?

With regards
Michael



--- In firebird-support@yahoogroups.com, "Martijn Tonies"
<m.tonies@u...> wrote:

>
>
>
> > Sorry Martijn,
>
> Ah, no need - I wrote a ":-)" behind it... Just joking around.
>
> > > Hey hey hey, Database Workbench is a feature, not a bug :-)
> >
> > Hey don't get me wrong, I am a register user of this very fine

product and

> > use it all day long, every day and it is an indispensable tool

in my

> > development process. Keep up the great work you are doing on

this

> product.
> > If the Firebird development team does come up a better security

model,

> then
> > this will protect us developers from someone using one of these

tools to

> > view our schemas or data without the proper permission to do do.
>
> I know what you mean - pretty much any user can now view schemata -
> however, the data itself is secure, unless you know the SYSDBA

password

> or if you have granted rights to the PUBLIC user.
>
>
> With regards,
>
> Martijn Tonies
> Database Workbench - developer tool for InterBase, Firebird & MS

SQL Server.

> Upscene Productions
> http://www.upscene.com