> If just anyone can stop the server, then some idiot is going to shut

it down, when the world is trying to use it.

Then don't add idiots to the firebird group. No one should need root
access in order to maintain an application.

-----Original Message-----
From: firebird-support@yahoogroups.com
[mailto:firebird-support@yahoogroups.com] On Behalf Of The Wogster
Sent: Thursday, March 23, 2006 4:39 PM
To: firebird-support@yahoogroups.com
Subject: Re: [firebird-support] Firebird init script

Rick Debay wrote:

>> What's to fix?
>
> Let me rephrase. Has the change mentioned in the comment been
> implemented? The init script is WORLD readable, so anyone can find
> the SYSDBA password if they are allowed to log on to the server, even
> as a n00b guest.
>
>>> Shouldn't anyone belonging to the firebird group be allowed to
> stop/start the server?
>> Heaven forbid.
>
> Why is it (from Pavel Cisar's comment) the intention that only root
> can restart firebird? There is a firebird user, and a firebird group.

> I would expect that the firebird user, or a member of the firebird
> group, be allowed to have operator privileges. I'm not talking about
> someone who can log on to the database, but a user on the box who
> belongs to the group that the install script created.
>

Starting or stopping the database server, should be difficult, root
needs the ability, because it needs to be able to stop the server during
a machine shutdown or restart. If just anyone can stop the server, then
some idiot is going to shut it down, when the world is trying to use it.

W


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Visit http://firebird.sourceforge.net and click the Resources item on
the main (top) menu. Try Knowledgebase and FAQ links !

Also search the knowledgebases at http://www.ibphoenix.com

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Yahoo! Groups Links