| Subject | Re: [firebird-support] Guys! I got it! - Re: Avoiding hard-coding db pass in app - without using db users |
|---|---|
| Author | Kjell Rilbe |
| Post date | 2008-11-11T19:54:45Z |
Zd wrote:
Kjell
--
--------------------------------------
Kjell Rilbe
DataDIA AB
E-post: kjell@...
Telefon: 08-761 06 55
Mobil: 0733-44 24 64
> You make a good point here.But DOS attacks are always possible, of course...
> By returning not only the password but the name of the user as well, we
> can prevent brute force attacks against SYSDBALIKE user!
Kjell
--
--------------------------------------
Kjell Rilbe
DataDIA AB
E-post: kjell@...
Telefon: 08-761 06 55
Mobil: 0733-44 24 64