[h2] Re: mydb.trace.db despite TRACE_LEVEL_FILE=0;TRACE_LEVEL_SYSTEM_OUT=0

Mon, 15 Jul 2013 11:35:52 -0700 

Sorry again, now I deleted all the data in all database tables except for 
the table "EINSTELLUNGEN"
The full content of the trace.db-file is as follows:

07-09 12:51:43 jdbc[2]: exception
org.h2.jdbc.JdbcSQLException: Syntax Fehler in SQL Befehl "EINSTELLUNGEN"; 
erwartet "EXPLAIN, EXECUTE, {"
Syntax error in SQL statement "EINSTELLUNGEN"; expected "EXPLAIN, EXECUTE, 
{"; SQL statement:
EINSTELLUNGEN [42001-170]

It seems like the errors only occur when H2 tries to restore the database 
data.
And what does that error message mean? EXPLAIN, EXECUTE?


Am Sonntag, 14. Juli 2013 16:14:31 UTC+2 schrieb EDV-Services:
>
>
> Hi guys,
>
> I've developed a software project and I've noticed that there is a file in 
> my user folder called "mydb.trace.db".
> When I open this file, I see a lot of sql statements exposing some tables 
> of my database.
> I use the following connection string: 
> jdbc:h2:~/mydb;TRACE_LEVEL_FILE=0;TRACE_LEVEL_SYSTEM_OUT=0;CIPHER=AES"
> I thought these two TRACE parameters in my connection string must be 
> enough to avoid creating the mydb.trace.db file.
>
> That's the trace output from "mydb.trace.db":
>
> 02-25 11:47:33 jdbc[2]: exception
> org.h2.jdbc.JdbcSQLException: Syntax Fehler in SQL Befehl "INSERT INTO 
> CUSTOMER(xxx, yyy) VALUES('xxx', 'yyy');
> ...
>
> I'm using the latest version "h2-1.3.172.dll" (dll file created from jar 
> file with ikvm).
> The trace entries occur when i use the following vb.net code:
>
> Dim restore As New Restore()
> restore.execute("backup.bck", "~", "mydb")
>
> I don't want hackers to be able to see my database content so imho it's a 
> serious security flaw.
> Can anyone give me a hint what I'm doing wrong?
>
> Best regards
> Michael
>

-- 
You received this message because you are subscribed to the Google Groups "H2 
Database" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To post to this group, send email to [email protected].
Visit this group at http://groups.google.com/group/h2-database.
For more options, visit https://groups.google.com/groups/opt_out.

Reply via email to