| Subject | Re: [firebird-support] SYSDBA password |
|---|---|
| Author | Geoff Worboys |
| Post date | 2010-04-12T05:03:44Z |
Hi Ricky,
If I install an operating system (Windows or Linux) with a
given admin/root password on one machine... and then carry
that disk to another machine (or just boot to different OS)
why can I read all the files off that drive?
The answer is the same in both cases: simple password access
control is no protection against physical access to the data!
To protect your operating system in this case you would write
to an encrypted drive. To protect your database you would do
the same thing (but it's easier because you don't have all
those boot time issues).
Take a look at TrueCrypt, BestCrypt, PGP-disk as among the
better known options for creating encrypted volumes via
software.
--
Geoff Worboys
Telesis Computing
> In one server I create a database with SYSDBA as owner andI think the best answer is a question...
> modified password why I can open/restore the databse in
> another server with default password (masterke) and username
> SYSDBA.
> What is the best practice to secure the database file?,
> please help
If I install an operating system (Windows or Linux) with a
given admin/root password on one machine... and then carry
that disk to another machine (or just boot to different OS)
why can I read all the files off that drive?
The answer is the same in both cases: simple password access
control is no protection against physical access to the data!
To protect your operating system in this case you would write
to an encrypted drive. To protect your database you would do
the same thing (but it's easier because you don't have all
those boot time issues).
Take a look at TrueCrypt, BestCrypt, PGP-disk as among the
better known options for creating encrypted volumes via
software.
--
Geoff Worboys
Telesis Computing