| Subject | Re: Password hashes used in Firebird 1.5 |
|---|---|
| Author | gymkus |
| Post date | 2010-09-23T14:04:33Z |
--- In firebird-support@yahoogroups.com, Kjell Rilbe <kjell.rilbe@...> wrote:
I am the owner "Administrator" of the server wherer the firebird 1.5 databse is running. So I am the owner of the security.fdb and I am able to read all the usernames and hashes inside this file. But I don't have the plain passwords.
The database I will connect to is also my own file, it is called maindb.fdb, but it isn't possible to see the ASCII-Code, Ithink the maindb.fdb is crypted.
The user who is able to access the maindb.fdb is 1234567890 wiht the hash 0VpxIenaHcU
>I think it is not the problem of administrative privileges:
>
> But if the requirement is not to take a snapshot of the database and
> have a temporary look, but rather be able to build your own live add-on
> that provides continuous access to the raw data in some way, then your
> suggestion won't work, right?
>
> I assume these people have a live application with an internal FB
> database, but they need to analyze or otherwise access the raw data in
> ways that the application doesn't allow, and they need to do this on a
> daily basis on current up to date data, i.e. "live data".
>
> This would require them to be able to access the database on the same
> server as the application. Putting your own security database there
> would destroy the application's access, and not doing so denies them
> access to the raw data.
>
> Please correct me if I'm missing something here.
I am the owner "Administrator" of the server wherer the firebird 1.5 databse is running. So I am the owner of the security.fdb and I am able to read all the usernames and hashes inside this file. But I don't have the plain passwords.
The database I will connect to is also my own file, it is called maindb.fdb, but it isn't possible to see the ASCII-Code, Ithink the maindb.fdb is crypted.
The user who is able to access the maindb.fdb is 1234567890 wiht the hash 0VpxIenaHcU