| Subject | Re: [firebird-support] How would Firebird prevent users thrasing database |
|---|---|
| Author | Aage Johansen |
| Post date | 2004-04-05T21:14:39Z |
On Mon, 5 Apr 2004 07:09:05 +0000 (UTC), Johan van Zyl wrote:
in the db. These passwords will only provide access through your
applications as 3rd party tools do not know how to do the
transformation. However, users with legitimate needs (of db access) will
have to be provided with another set of username/password.
(There's more to security than this ...)
--
Aage J.
> You bring up a good point that has been a big long-time complaint of mineYou could transform/encrypt the passwords before creating the user/password
> with regards to SQL. I recall five years ago or so investigating a variety
> of SQL's and discovering that there was no real protection from stopping the
> end-user from gaining access to the SQL db using any widely available SQL db
> manager tool.
> I am finally caving in and accepting the reality of needing to use SQL for
> my upcoming projects.
> ...
in the db. These passwords will only provide access through your
applications as 3rd party tools do not know how to do the
transformation. However, users with legitimate needs (of db access) will
have to be provided with another set of username/password.
(There's more to security than this ...)
--
Aage J.