> > > 1- SRP is not a commonly used protocol
> >
> > You mean in general or in Firebird?
>
> In general.
That's true.
But what other options you have on Firebird - either legacy auth (we probably
don't want to send people this way) or SSPI (which only works on Windows)?
--
Mgr. Jiří Činčur
> On Fri, May 29, 2020, at 22:07, Leyne, Sean wrote:
> > 1- SRP is not a commonly used protocol
>
> You mean in general or in Firebird?
In general.
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
01.06.2020 16:42, Alex Peshkoff via Firebird-devel wrote:
People often complain of poor diagnostics in firebird. Well, looks like now it becomes
popular to complain of too good diagnostics - just because it became a bit old.
Actually creation of a unnecessary problem just to show perfect diag
On 01-06-2020 16:42, Alex Peshkoff via Firebird-devel wrote:
People often complain of poor diagnostics in firebird. Well, looks like
now it becomes popular to complain of too good diagnostics - just
because it became a bit old. We have a special code that detects
possible error case typical for
On 2020-06-01 17:29, Mark Rotteveel wrote:
On 01-06-2020 16:07, Alex Peshkoff via Firebird-devel wrote:
On 2020-06-01 16:54, Mark Rotteveel wrote:
On 01-06-2020 11:57, Alex Peshkoff via Firebird-devel wrote:
Legacy approach of pre-initializing with well known to the world
password is very bad
On 01-06-2020 16:07, Alex Peshkoff via Firebird-devel wrote:
On 2020-06-01 16:54, Mark Rotteveel wrote:
On 01-06-2020 11:57, Alex Peshkoff via Firebird-devel wrote:
Legacy approach of pre-initializing with well known to the world
password is very bad idea. Not to tell much words about security
On 2020-06-01 16:54, Mark Rotteveel wrote:
On 01-06-2020 11:57, Alex Peshkoff via Firebird-devel wrote:
Legacy approach of pre-initializing with well known to the world
password is very bad idea. Not to tell much words about security -
have you ever seen unix distro with pre-initialized root pa
On 01-06-2020 11:57, Alex Peshkoff via Firebird-devel wrote:
Legacy approach of pre-initializing with well known to the world
password is very bad idea. Not to tell much words about security - have
you ever seen unix distro with pre-initialized root password?
Our installers all try to do the b
01.06.2020 11:57, Alex Peshkoff via Firebird-devel wrote:
What about completely
automatic initialization - yes, we can do it and save new random SYSDBA password to
firebird.log. But I doubt that this is better solution compared with existing - how can
novide guess where to search for that passw
On 2020-05-29 23:12, Mark Rotteveel wrote:
On 29-05-2020 22:07, Leyne, Sean wrote:
The default list should only contain options which are available
without additional configuration or initialization.
I disagree.
The default should represent best practice, most sensible and
reasonable values.
On Fri, May 29, 2020, at 22:07, Leyne, Sean wrote:
> 1- SRP is not a commonly used protocol
You mean in general or in Firebird?
--
Mgr. Jiří Činčura
https://www.tabsoverspaces.com/
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
On 29-05-2020 22:07, Leyne, Sean wrote:
The default list should only contain options which are available
without additional configuration or initialization.
I disagree.
The default should represent best practice, most sensible and reasonable values.
1- SRP is not a commonly used protocol
I
> > The default list should only contain options which are available
> > without additional configuration or initialization.
>
> I disagree.
>
> The default should represent best practice, most sensible and reasonable
> values.
1- SRP is not a commonly used protocol
2- If not for the extra con
> The default list should only contain options which are available
> without additional configuration or initialization.
I disagree.
The default should represent best practice, most sensible and reasonable
values. Extra configuration, especially for security/admin isn't a bad thing.
BTW, I ha
>If by default SRP is not initialized then by default it must not be in
> list of auth
> plugins and vice versa if it is in the default list, it must be always ready
> to work.
Completely agree!
The fact that SRP is an available option does not mean that it should be in the
default list
Main problem is that security database initialization must be documented
somewhere for FB4,
and I think the best place is FB4 Quick Start Guide, because it fits
nicely to chapters like Installing and Server configuration.
And that Quick Start Guide PDF should be included in installation
packages
28.05.2020 11:59, Alex Peshkoff via Firebird-devel wrote:
I remember very well when I myself first installed interbase 5.6 >20 years ago, and lost a
few hours searching for default SYSDBA password (masterkey). Now it looks funny, that time
I was close to uninstall and forget about interbase. Tha
On 2020-05-28 12:37, Mark Rotteveel wrote:
On 2020-05-28 11:22, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-28 12:06, Dimitry Sibiryakov wrote:
28.05.2020 00:35, Adriano dos Santos Fernandes wrote:
It's more confusing to have a "functional" security database without
users
No SRP use
On 2020-05-28 11:22, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-28 12:06, Dimitry Sibiryakov wrote:
28.05.2020 00:35, Adriano dos Santos Fernandes wrote:
It's more confusing to have a "functional" security database without
users
No SRP users doesn't also mean no legacy or SSPI users
On 2020-05-28 00:35, Adriano dos Santos Fernandes wrote:
On 27/05/2020 17:54, Mark Rotteveel wrote:
Not having users at all is just a special case of not having the right
username or password. The error for the end-user should be the same in
both cases.
That the administrator gets the same er
28.05.2020 11:22, Alex Peshkoff via Firebird-devel wrote:
We talk about a message which should be as clear as possible for novice.
I still see no need for this message for novices.
As was already said case "no such user" is not different from "wrong password for this
user" and "no one user
On 2020-05-28 12:06, Dimitry Sibiryakov wrote:
28.05.2020 00:35, Adriano dos Santos Fernandes wrote:
It's more confusing to have a "functional" security database without
users
No SRP users doesn't also mean no legacy or SSPI users.
Certainly, but in this case the best solution is to remov
28.05.2020 00:35, Adriano dos Santos Fernandes wrote:
It's more confusing to have a "functional" security database without
users
No SRP users doesn't also mean no legacy or SSPI users.
Possibility to work without SYSDBA account is a feature not bug.
--
WBR, SD.
Firebird-Devel mailing
On 2020-05-27 19:18, Vlad Khorsun wrote:
27.05.2020 15:14, Adriano dos Santos Fernandes wrote:
On 27/05/2020 08:56, Vlad Khorsun wrote:
isc_missing_data_structures is former
Install incomplete, please read the Compatibility chapter in the
release notes for this version
It could be changed to
On 27/05/2020 17:54, Mark Rotteveel wrote:
>
> Not having users at all is just a special case of not having the right
> username or password. The error for the end-user should be the same in
> both cases.
>
> That the administrator gets the same error when he tries to login is not
> really a pro
On 27-05-2020 22:25, Vlad Khorsun wrote:
Then they will get the normal 'Your user name and password are not
defined. Ask your database administrator to set up a Firebird login.'
error, instead of this confusing error.
It is discussed in this thread and I see no success there.
I'm not sure
27.05.2020 23:04, Mark Rotteveel wrote:
On 27-05-2020 18:16, Vlad Khorsun wrote:
27.05.2020 17:11, Mark Rotteveel wrote:
On 2020-05-27 13:35, Vlad Khorsun wrote:
27.05.2020 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more inf
On 27-05-2020 22:04, Mark Rotteveel wrote:
I don't think creating random user just to create plugin tables is
good idea.
I wasn't suggesting to create a random plugin, [..]
I meant to say "random user"...
Mark
--
Mark Rotteveel
Firebird-Devel mailing list, web interface at
https://list
On 27-05-2020 18:16, Vlad Khorsun wrote:
27.05.2020 17:11, Mark Rotteveel wrote:
On 2020-05-27 13:35, Vlad Khorsun wrote:
27.05.2020 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end user,
show waht to do to
27.05.2020 18:16, Vlad Khorsun wrote:
But how it will solve problem of missing SYSDBA ?
Is it a problem? I'm sure it was said to be a feature, improved security, etc.
How it will solve issue of end user who can't login ?
Next auth plugin in list will be tried. May be even successfully.
27.05.2020 15:14, Adriano dos Santos Fernandes wrote:
On 27/05/2020 08:56, Vlad Khorsun wrote:
isc_missing_data_structures is former
Install incomplete, please read the Compatibility chapter in the
release notes for this version
It could be changed to:
To complete security database initializa
27.05.2020 17:11, Mark Rotteveel wrote:
On 2020-05-27 13:35, Vlad Khorsun wrote:
27.05.2020 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end user,
show waht to do to fix error and refers to the documentation
On 2020-05-27 13:35, Vlad Khorsun wrote:
27.05.2020 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end
user,
show waht to do to fix error and refers to the documentation only in
order to get a full explanation
On 2020-05-27 14:47, Dimitry Sibiryakov wrote:
27.05.2020 13:42, Alex Peshkoff via Firebird-devel wrote:
But that will do things even more obscure - every user will get
regular message about illegal login/password.
And that's right:
1. It try to login as SYSDBA and get "user not defined" er
On 27/05/2020 08:56, Vlad Khorsun wrote:
>
>
> isc_missing_data_structures is former
> Install incomplete, please read the Compatibility chapter in the
> release notes for this version
>
> It could be changed to:
> To complete security database initialization, please create user using
> @1 or read
27.05.2020 14:33, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-27 14:26, Vlad Khorsun wrote:
27.05.2020 10:58, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-26 19:16, Ivan Přenosil wrote:
Not sure where to report this one ...
When trying to work with uninitialized security database
Another confusing thing about this error is that if server is open, it's
using security database and one cannot attach to it with embedded to
create SYSDBA.
It would be good if server detaches from security when it cannot use, so
the server will not be needed to be closed to create the user with e
27.05.2020 13:42, Alex Peshkoff via Firebird-devel wrote:
But that will do things even more obscure - every user will get regular message about
illegal login/password.
And that's right:
1. It try to login as SYSDBA and get "user not defined" error.
2. It look to list of users and see no SYSD
27.05.2020 14:40, Dimitry Sibiryakov wrote:
27.05.2020 13:35, Vlad Khorsun wrote:
Engine can't add SYSDBA with known to user (DBA) password.
Engine knows nothing about user manager providers.
And that's ok, it can return usual "Your user name or password is not
defined" error.
It is
On 2020-05-27 14:34, Dimitry Sibiryakov wrote:
27.05.2020 13:31, Alex Peshkoff via Firebird-devel wrote:
It does not know what sysdba password to use.
That's fine, let it just create the security database and data
structures but not the user.
But that will do things even more obscure -
27.05.2020 13:35, Vlad Khorsun wrote:
Engine can't add SYSDBA with known to user (DBA) password.
Engine knows nothing about user manager providers.
And that's ok, it can return usual "Your user name or password is not
defined" error.
BTW, isn't whole authentication the server's thing not
27.05.2020 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end user,
show waht to do to fix error and refers to the documentation only in
order to get a full explanation.
May be it would be better if the eng
27.05.2020 13:31, Alex Peshkoff via Firebird-devel wrote:
It does not know what sysdba password to use.
That's fine, let it just create the security database and data structures but
not the user.
--
WBR, SD.
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/li
On 2020-05-27 14:26, Vlad Khorsun wrote:
27.05.2020 10:58, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-26 19:16, Ivan Přenosil wrote:
Not sure where to report this one ...
When trying to work with uninitialized security database in FB4 the
server will raise error, e.g.
SQL> connect 'lo
On 2020-05-27 14:29, Dimitry Sibiryakov wrote:
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end user,
show waht to do to fix error and refers to the documentation only in
order to get a full explanation.
May be it would be better if the e
27.05.2020 13:26, Vlad Khorsun wrote:
In my opinion, the message should be more informative for end user,
show waht to do to fix error and refers to the documentation only in
order to get a full explanation.
May be it would be better if the engine finish initialization instead of throwing
27.05.2020 10:58, Alex Peshkoff via Firebird-devel wrote:
On 2020-05-26 19:16, Ivan Přenosil wrote:
Not sure where to report this one ...
When trying to work with uninitialized security database in FB4 the server will
raise error, e.g.
SQL> connect 'localhost/:Z:\x.fdb' USER SYSDBA PASSWOR
On 2020-05-26 19:16, Ivan Přenosil wrote:
Not sure where to report this one ...
When trying to work with uninitialized security database in FB4 the
server will raise error, e.g.
SQL> connect 'localhost/:Z:\x.fdb' USER SYSDBA PASSWORD 'masterkey';
Statement failed, SQLSTATE = 28000
Inst
48 matches
Mail list logo
