Improving Audit and Accountability in Firebird
----------------------------------------------
Key: CORE-5786
URL: http://tracker.firebirdsql.org/browse/CORE-5786
Project: Firebird Core
Issue Type: New Feature
Components: Security
Affects Versions: 3.0.3
Environment: All
Reporter: Tony Whyman
Audit and Accountability are important for some users where there is a need to
monitor access and/or modification of data. It is understood that the current
Firebird implementation does allow the creation of triggers that can monitor
and record various events in a user database or even a security database.
However, there are many security related events that cannot be logged using
triggers and which may, nevertheless, be important to some users.
These events include:
Failed Login attempts
Database Creation and Deletion
Database Encryption/Decryption
Operations performed through the Services API.
Creation/Deletion of metadata objects
Activation/Deactivation of metadata objects where applicable.
It is proposed that Firebird should be enhanced such that a logging mechanism
is provided to permit such events to be logged and that the use of such a
logging mechanism should be configurable on a global or per database basis.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://tracker.firebirdsql.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
