| Subject | Re: [firebird-support] Password in plain text for linux firebird |
|---|---|
| Author | Brad Pepers |
| Post date | 2004-05-11T05:05:04Z |
>We have a product that we wish to distribute on a linux server runningAs far as I know the files mentioned are only readable by the root user
>firebird 1.5.x . Is there anyway to protect the passwords? When looking at the
>installation scripts I noticed that the password is stores in plain text in 2
>places:
>
>1) SYSDBA.password
>2) the firebird service file
>
>We have taken great care to attempt to secure our database structure. This
>would obviously make those attempts worthless.
>
>Any advice would be appreciated.
on the local system and its pretty much a given that if a user can
become root then all hope is already lost. So its not really a security
hole to have the password in those files in plain text as long as the
file is only readable by root.
--
Brad Pepers
brad@...