| Subject | Re: [firebird-support] Seperation of user creation and SYSBDA role |
|---|---|
| Author | Nikolaus Kern |
| Post date | 2010-11-14T12:38:41Z |
Hello Paul,
Thanks for your support.
I was less concerned about security2.fdb (to be honest) more about my
own db structure ;-)
I need to work through the documents and test it.
What I would like to achive is a user/role that can create/alter/delete
users but never change the datastructure of my dB (e.g. by using drop
view x).
Will come back when I am done with the understanding the docs.
cu
Niko
Thanks for your support.
I was less concerned about security2.fdb (to be honest) more about my
own db structure ;-)
I need to work through the documents and test it.
What I would like to achive is a user/role that can create/alter/delete
users but never change the datastructure of my dB (e.g. by using drop
view x).
Will come back when I am done with the understanding the docs.
cu
Niko
>[Non-text portions of this message have been removed]
>
> > *) This privileged user should not be able to modify the
> > datastructure by alter/delete views, tables etc.
>
> BTW, if you are talking about the datastructure of the security
> database: SYSDBA can't change that either. Since Firebird 2.0,
> nobody can connect to the security database. Of course there are
> ways to circumvent this restriction, but they require file
> system access - and the authority to stop and start the server.
>
> Paul Vinkenoog
>
>