| Subject | Re: [firebird-support] How secure is Firebird |
|---|---|
| Author | Martijn Tonies |
| Post date | 2005-10-01T07:14:18Z |
Hoi Richard,
If a user has your datafiles, he can get into your database. Then again,
this is true for many (if not all) database systems.
Besides, given the open source nature of Firebird, it cannot be too hard
to compile a version that ignores password security...
With regards,
Martijn Tonies
Database Workbench - tool for InterBase, Firebird, MySQL, Oracle & MS SQL
Server
Upscene Productions
http://www.upscene.com
Database development questions? Check the forum!
http://www.databasedevelopmentforum.com
> This might sound like a bit of a daft question, but if a user got holdUsernames and passwords are server wide in Firebird.
> of a Firebird 1.52 .fdb file, how secure is the SYSDBA password in it?
> That is, would it take much effort to extract the unknown password?
If a user has your datafiles, he can get into your database. Then again,
this is true for many (if not all) database systems.
Besides, given the open source nature of Firebird, it cannot be too hard
to compile a version that ignores password security...
With regards,
Martijn Tonies
Database Workbench - tool for InterBase, Firebird, MySQL, Oracle & MS SQL
Server
Upscene Productions
http://www.upscene.com
Database development questions? Check the forum!
http://www.databasedevelopmentforum.com