| Subject | Re: More on security |
|---|---|
| Author | ben_ata |
| Post date | 2004-11-29T23:09:01Z |
--- In firebird-support@yahoogroups.com, "rajsubramani"
<rajsubramani@y...> wrote:
server based DBMS.
things up. If they delete the whole file, the application would not
work as well, right? So where is the difference to dropping the trigger?
The DBA of any database installation will always be able to access the
data. There is no way around that (just like your network
administrator will always be able to read your emails or the contents
of any file on your harddisk)
Thomas
<rajsubramani@y...> wrote:
> Most other DB's I work with have a concept of DB owner whichI know not one decent DBMS which does have this concept. At least no
> goes with the DB file(s).
> By delegating user password security to security.fdb
> hasn't this been circumvented?
server based DBMS.
> Hey presto, the third party can now set SYSDBA and password to hisAs soon as you give the user physical access to a file he can screw
> choice, connect to my DB, drop the triggers or whatever.
things up. If they delete the whole file, the application would not
work as well, right? So where is the difference to dropping the trigger?
The DBA of any database installation will always be able to access the
data. There is no way around that (just like your network
administrator will always be able to read your emails or the contents
of any file on your harddisk)
Thomas