| Subject | Re: [firebird-support] Re: Users can create anything?!? |
|---|---|
| Author | Sam Hunt |
| Post date | 2005-05-25T00:21:42Z |
Sam Hunt wrote:
anything to a FB database, unless they have sufficuent network rights
and know the server's (security.fdb) password. I suppose they "could"
snoop around a DB, IF they got a copy of it, but what good would it do
them, unlerss they can erase/replace the original, which they shouldn't
be able to do, if they don't have complete netwotk righjts to the db
dir. I'm certainly open to learning. I'm new at this.
>richardghayward wrote:as far as I know, a user who happens to have IBOConsole cannot do
>
>
>
>>Hi Sam,
>>
>>
>>
>>
>>
>>>"Users" are NOT normally allowed to log into the FB server.
>>>Why are yours?
>>>Your app should be providing appropriate privleges/access rights to
>>>necessary data.
>>>
>>>
>>>
>>>
>>>
>>Because security should be the responsibility of the server, not a
>>client application. I want to give users the freedom to use any FB
>>client they want, IBOconsole, IB_SQL , ibWebAdmin or whatever.
>>
>>
>>
>>
>>
>>>If your users need to query the data, provide them with a tool with a
>>>dedicated read-only datasource.
>>>
>>>
>>>
>>>
>>Well following that line of reasoning, why bother having a server that
>>understands how to grant or withhold select permissions at all?
>>
>>regards
>>Richard
>>
>>
>>
>>
>>
>>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>>
>>Visit http://firebird.sourceforge.net and click the Resources item
>>on the main (top) menu. Try Knowledgebase and FAQ links !
>>
>>Also search the knowledgebases at http://www.ibphoenix.com
>>
>>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>>
>>Yahoo! Groups Links
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>maybe I didn't state the case correctly for FB.
>I'll let someone else add to what I have said.
>Sam H.
>
>
>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>
>Visit http://firebird.sourceforge.net and click the Resources item
>on the main (top) menu. Try Knowledgebase and FAQ links !
>
>Also search the knowledgebases at http://www.ibphoenix.com
>
>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>
>Yahoo! Groups Links
>
>
>
>
>
>
>
>
anything to a FB database, unless they have sufficuent network rights
and know the server's (security.fdb) password. I suppose they "could"
snoop around a DB, IF they got a copy of it, but what good would it do
them, unlerss they can erase/replace the original, which they shouldn't
be able to do, if they don't have complete netwotk righjts to the db
dir. I'm certainly open to learning. I'm new at this.