-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 23 May 2003 12:34, Svein Erling Tysvaer wrote:

> Anyone who can reach your database file physically, can get hold of your
> data. It is possible to delete the readable version of stored procedures
> and triggers(?), but the only proper way to protect your system is to
> protect your files so that no-one can touch them except through the
> database engine (of course, SYSDBA needs to be trusted and have a password
> deviating from the "interbase standard" masterkey).

In my Linux box, I usually do this by running FireBird as non-root user
(a.k.a. "firebird" user, "firebird" group), then setting all database files
(a.k.a. *.fdb) with permissions 660. Then only the owner (a different user
than "firebird") and the owner's group (also a different one from "firebird")
have access to the file.

Finally, add user firebird to database owner's group and you are done.

- --
Jaume Andreu Sabater Malondra
jsabater@...
http://www.linuxsilo.net

"Ubi sapientas ibi libertas"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE+zg11VATr4IuSCZIRAl6bAKDXYPieai9lMLzO9qrZev90SttYHQCgyLZF
wtRz2wYGiOlzVSNoI2jxCds=
=qJNd
-----END PGP SIGNATURE-----