On 05/20/2016 10:00 AM, Mark Rotteveel wrote: > On 19-5-2016 23:33, Leyne, Sean wrote: >>> I think Adriano is taking about the fact that someone from Java code running >>> inside Firebird would be able to make an embedded connection to any >>> database running on the same server.
> > BTW, this risk also exists for normal UDFs. Definitely yes. Therefore for both UDFs and plugins we have some rules (like firebird.conf entry UdfAccess) making it impossible (at least we hope it's impossible) to run a code which was not accepted as safe by server admin. IMO we need something giving same result for Java - unsafe code should not be runnable. ------------------------------------------------------------------------------ Mobile security can be enabling, not merely restricting. Employees who bring their own devices (BYOD) to work are irked by the imposition of MDM restrictions. Mobile Device Manager Plus allows you to control only the apps on BYO-devices by containerizing them, leaving personal data untouched! https://ad.doubleclick.net/ddm/clk/304595813;131938128;j Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
