Subject Re: [firebird-support] Database Security
Author Ivan Prenosil
> Why not just add new option to firebird.conf
> # ----------------------------
> # In place security enhancement,when used only MD5 digest of password is
> stored in security database.
> #Warning: could cause compatibility problems ! Default (Off) is recommended.
> # Type: boolean
> MD5Password = 0 [0/1]

Password is encrypted both on client and server.
If you want to add just option to firebird.conf, how would you
solve situation having one server using new algorithm,
second server usgin old algorithm, and client trying
to connect to both.
Or how would you solve upgrading ? i.e. after changing
configuration to use different algorithm, existing passwords
in security database would become invalid.