| Subject | Re: [firebird-support] Firebird - no security??? Seems unbelievable.... |
|---|---|
| Author | Geoff Worboys |
| Post date | 2009-11-19T04:32:19Z |
The problem being discussed is not limited to database systems,
it is a simple fact of computer security. Skeptics need not
take Firebird enthusiasts word for it, there are many security
resources that will confirm it. For example the central point
was reiterated in the most recent cryptogram newsletter:
"Evil Maid" Attacks on Encrypted Hard Drives
http://www.schneier.com/crypto-gram-0911.html#9
The article quotes a familiar phrase in computer security:
"As soon as you give up physical control of your computer,
all bets are off."
If specialist security products cannot avoid such vulnerability
I wonder why so many people expect that an open-source database
can manage it.
--
Geoff Worboys
Telesis Computing
it is a simple fact of computer security. Skeptics need not
take Firebird enthusiasts word for it, there are many security
resources that will confirm it. For example the central point
was reiterated in the most recent cryptogram newsletter:
"Evil Maid" Attacks on Encrypted Hard Drives
http://www.schneier.com/crypto-gram-0911.html#9
The article quotes a familiar phrase in computer security:
"As soon as you give up physical control of your computer,
all bets are off."
If specialist security products cannot avoid such vulnerability
I wonder why so many people expect that an open-source database
can manage it.
--
Geoff Worboys
Telesis Computing