> You then can create such a user on
> the machine and - there you go!

Most (perhaps all) available Server-Databases do have such a
"backdoor". If you can gain direct access to the Database files you
can remove any protection. For example the MySQL-Server can be started
with an option so ignore any passwords defined, in PostgreSQL you can
set an option to accept connections without password-authorisation.
I'm not that familar with other databases but I would assume that most
of them do not block out the machines owner from accessing the database.

To prevent this you should set file-access-rights at OS-level in a way
that only the DB-Server can read the files.

In Addition you should have an sufficient strong lock at the rooms
door since the OS-level restrictions also can be removed by gaining
physical access to the harddisk.


Elmar