[Firebird-devel] FB/Java plugin security

Adriano dos Santos Fernandes Sun, 06 Mar 2016 08:08:32 -0800

Hi!

Original FB/Java plugin had a security database where SYSDBA could
define JAAS permissions per users.


Since Java can read files and do bad things, it's SYSDBA (server admin)
to define these permissions. And since was SYSDBA task to create users,
that was ok.

No we can have embedded users in databases and database owners (not
SYSDBA) can create users.

That created a problem in how FB/Java should manage permissions.

Should the FB/Java security database not mention only user names but
databases too, and how?


Adriano

------------------------------------------------------------------------------
Firebird-Devel mailing list, web interface at 
https://lists.sourceforge.net/lists/listinfo/firebird-devel

[Firebird-devel] FB/Java plugin security

Reply via email to