Hi!

Firebird itself is not secure. The user/password are not stored in the DB, just have to use another Firebird instance with other port with a known sysdba password and you can access to DB.

Firebird is open source, you can fork it and compile a version wiothout authentication, etc...

http://www.firebirdfaq.org/cat7/