On 15.08.2018 17:19, Leyne, Sean wrote:
I want to suggest simple improvement to execute statement - make it
possible to run in it CREATE DATABASE statements. It will not accept
parameters and ignore clauses ON EXTERNAL DATA SOURCE, WITH ...
TRANSACTION and WITH CALLER PRIVILEGES. Unlike ISQL which switches to
the context of newly created database in execute statement after successful
creation handle to created database will be immediately closed. It's
supposed that later one can access it using ON EXTERNAL DATA SOURCE
clause of EXECUTE STATEMENT.
I view the ability to perform such actions as a security exposure.
Please explain what exposure you see here.
I do not see this feature as providing any benefit, which can't be accomplished
by more secure/appropriate mechanisms.
What mechanisms?
PS. I know that having tablespaces & partitioning is much better
solution but this requires big changes in engine, improvement to EXECUTE
STATEMENT will hardly require more time than writing this letters...
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
