Subject Re: [firebird-support] Important security question
Author Nando Dessena

>>I want to guarantee that some malicious user (dissatisfied with job salary
>>;-) could not create and populate so big database on server that will use
>>all available disk space (could it be recognized as Denial of Service
>>attack ?)

H> Restrict database access to be only in specified directory
H> roots. Don't give ordinary users any filesystem permissions to these
H> locations.

Unfortunately this does not help, since the firebird user will need
full access to those folders regardless of ordinary user limitations.

I don't know of a way to avoid this, short of using quotas.
I would be really glad to hear of one, though.

Nando mailto:nandod@...