Subject | Re: [firebird-support] Re: Is Firebird too weak for a business environment? |
---|---|
Author | Nikolay Ivanchev |
Post date | 2003-11-28T13:13:03Z |
Simply all open source DataBase Engines suffer from such problem - if you
have the data
you can access it - simply you can get the source of the engine and modify
it to give you access.
This is not a flame of open vs closed source. Open source is proven and
stable model.
Just a tought :-)
Niki
have the data
you can access it - simply you can get the source of the engine and modify
it to give you access.
This is not a flame of open vs closed source. Open source is proven and
stable model.
Just a tought :-)
Niki
----- Original Message -----
From: "Elmar Haneke" <elmar@...>
To: <firebird-support@yahoogroups.com>
Sent: Friday, November 28, 2003 2:07 PM
Subject: Re: [firebird-support] Re: Is Firebird too weak for a business
environment?
> > You then can create such a user on
> > the machine and - there you go!
>
> Most (perhaps all) available Server-Databases do have such a
> "backdoor". If you can gain direct access to the Database files you
> can remove any protection. For example the MySQL-Server can be started
> with an option so ignore any passwords defined, in PostgreSQL you can
> set an option to accept connections without password-authorisation.
> I'm not that familar with other databases but I would assume that most
> of them do not block out the machines owner from accessing the database.
>
> To prevent this you should set file-access-rights at OS-level in a way
> that only the DB-Server can read the files.
>
> In Addition you should have an sufficient strong lock at the rooms
> door since the OS-level restrictions also can be removed by gaining
> physical access to the harddisk.
>
>
> Elmar
>
>
>
> To unsubscribe from this group, send an email to:
> firebird-support-unsubscribe@yahoogroups.com
>
>
>
> Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
>
>
>