On 20/05/2016 06:57, Dimitry Sibiryakov wrote: > 20.05.2016 11:50, Alex Peshkoff wrote: >> It even may allow embedded connection but (depending upon provided user >> name in DPB or not) perform authentication or place into DPB auth block >> from original connection. > Who "it"? The user can upload whole Jaybird with any modifications he > wants. >
You're completely wrong. Jaybird is present in server filesystem. User can upload whole Jaybird to database, yes, but it will be unusable: - Classloader will load Jaybird classes from filesystem - User can rename Jaybird, yes, but in the database it does not have permissions as the code in the filesystem So only people with filesystem rights can compromise the server, and by default FB/Java does not allow this. Adriano ------------------------------------------------------------------------------ Mobile security can be enabling, not merely restricting. Employees who bring their own devices (BYOD) to work are irked by the imposition of MDM restrictions. Mobile Device Manager Plus allows you to control only the apps on BYO-devices by containerizing them, leaving personal data untouched! https://ad.doubleclick.net/ddm/clk/304595813;131938128;j Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
