| Subject | RE: [firebird-support] Can we "Lock Down" Firebird to keep users from tampering with data? |
|---|---|
| Author | Cao Ancoinc |
| Post date | 2006-03-20T06:12Z |
Hi Dany
I would look at a simple solution as follows:
Hard code a user prefix to the user name in the frontend application
ie if the user name is TOM and the hardcoded prefix is ABC the the actual
user name in security.db is ABCTOM
The user only ever enters TOM as the user name so if he tries to enter TOM
outside the permitted interface it will be an invalid user name
Obviously you keep the prefix to yourselves
reagrds Cao
I would look at a simple solution as follows:
Hard code a user prefix to the user name in the frontend application
ie if the user name is TOM and the hardcoded prefix is ABC the the actual
user name in security.db is ABCTOM
The user only ever enters TOM as the user name so if he tries to enter TOM
outside the permitted interface it will be an invalid user name
Obviously you keep the prefix to yourselves
reagrds Cao