-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Am Dienstag, 11. Februar 2003 15:54 schrieb Gloss Mathias:
> you're also right. But
> - you cant easy search/join/index.... encrypted data
Why not, if the kernal is abel to decrypt on the fly using the
key out of the connect string ?
> - if you want to decrypt the data, you have to store
> the key in the application
Or read it from the user in front of the terminal
> - if you want to join/index/... the data you have to
> store a key in the database.
No, I don't think so. It has to be stored in the session,
RAM.
> That were my thoughts about data encryption.
> Of course it would be nice to secure the vserver
> and the communication between client and server.
With big efforts this is already possible using ssh tunnels, but
1000x better it would be if this is a standard client behavior.
Additional a ACL Matrix for allowed/forbidden IP connections
for vserver is needed.
mfG
J�rgen Sauer
- --
J�rgen Sauer - AutomatiX GmbH, +49-4209-4699, [EMAIL PROTECTED] **
** Das Linux Systemhaus - Service - Support - Server - L�sungen **
** http://www.automatix.de http://www.kranautomatisierung.de **
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+SS+pW7UKI9EqarERAooyAKCALtt7tIKl2F10mF1MAwSslafI4wCg31HL
3z3ubIyPPFnVICmWzHe3n9I=
=HEfv
-----END PGP SIGNATURE-----
_______________________________________________
sapdb.general mailing list
[EMAIL PROTECTED]
http://listserv.sap.com/mailman/listinfo/sapdb.general
