Albert Parés wrote:

> In few weeks we starting developing a management web application with php
> (Symphony) and us intention are use Firebird 2.5 for a database engine. We
> expect to arrive about 7000 simultaneous users with readers and writers.
> Firebird is a good choice? Is secure?

There's nothing in Firebird that make it more or less secure. It's how
you use it. If you have full control over the server where Firebird
resides you can make it bulletproof.

If you have a web application, I suggest locking down the server as much
as possible, make it only listen to localhost (in firebird.conf). Make
sure your web application does not allow any buffer overflow attacks and
you should be good. In this aspect Firebird is even more secure than
MySQL because stuff like SQL injection is much harder to do with
Firebird and overall malicious users can do less damage.

> Now we run two web applications in Firebird 2.1 about a maximum of 300
> simultaneous users. The performance is correct after we optimize the
> queries. I’m concerned because I read in a few days ago messages that
> Firebird is not secure in the web application and also with a lot of
> simultaneous user and a lot of transaction the performance is bad. Someone
> have experience with this topic?

This was mostly concerned about shared web hosting. If you run your own
server than there is not much to worry about.

Of course, you will never know for real until you try it.

--
Milan Babuskov

==================================
The easiest way to import XML, CSV
and textual files into Firebird:
http://www.guacosoft.com/xmlwizard
==================================