Thanks for the reply Anderson,

but this is a no-go. What's in the exe can be read by a talented hacker easily. (as it shouldn't be hard to obtain a copy of the executable)
The application should get access to the password during runtime only. This is a much safer way, as this program will be deployed at multiple locations and this way I can set a different password on the server side at each location. Also, it's much harder to get the password in a securily protected network than to read it from an EXE...

I've created a new thread with the problem, just to make things clear.

Regards,
Zd

----- Original Message -----
From: Anderson Farias
To: firebird-support@yahoogroups.com
Sent: Monday, November 10, 2008 12:55 AM
Subject: Re: [firebird-support] How do I prevent non-SYSDBA user from seeing DB structure?


Hi,

Just to be more clear on it

>Another way is to use an 'exe packer' (I like UPX) that will make very hard to extract >any strings from your EXE.

When I say... "make very hard" ... I'm talking about normal users that don't even know how to google for 'unpackers'

;-)

Of course a [more] secure way to work on your enviroment is with a 3-tier, but that may be to much work for you to be an option right now.

Regards,
Anderson Farias

[Non-text portions of this message have been removed]





[Non-text portions of this message have been removed]