| Subject | Re: Database Security, or lack thereof |
|---|---|
| Author | lance8086 |
| Post date | 2005-05-08T17:49:54Z |
--- In firebird-support@yahoogroups.com, "Adam" <s3057043@y...> wrote:
issues which exists on any platform.
I was just suprised at the lack of logical security in the database.
I wasn't even trying and was able to wreck it. A non-dba user should
not be able to destroy a db though a query.
time to set up and maintain.
production dbms, like builtin transaction logging and recovery.
Firebird seems to be on the right track, but its not even close to
there yet. Hopefully I'll be able to work around its current
shortcomings.
> A quick visit to the FAQ, knowledge base or a search of this forumanything
> would alert you to these restrictions. You are not uncovering
> unknown.Thanks. I figured as much.
> Here are some more:Read all that already. Most of it deals with physical security
issues which exists on any platform.
I was just suprised at the lack of logical security in the database.
I wasn't even trying and was able to wreck it. A non-dba user should
not be able to destroy a db though a query.
> It is quite possible to create a secure environment using Firebird,If so, I'd like to see an example that's not going to take a lot of
> but you must go in using the Firebird mindset.
time to set up and maintain.
> By the way, I do agree with you that FB security does lack featuresIt also lacks other features I would consider standard for a
> available to other databases.
production dbms, like builtin transaction logging and recovery.
>I suggest you read the plans for Firebird 2 and 3 to see.Small consolation for today.
Firebird seems to be on the right track, but its not even close to
there yet. Hopefully I'll be able to work around its current
shortcomings.