please not one user account for all users best joke is sys - PowerPoint PPT Presentation

1 / 20
About This Presentation
Title:

please not one user account for all users best joke is sys

Description:

Please not one user account for all users (best joke is sysdba) Passwords: ... With InterBase 7.5 one previous version (major release) of InterBase, i.e. ... – PowerPoint PPT presentation

Number of Views:30
Avg rating:3.0/5.0
Slides: 21
Provided by: conference71
Category:

less

Transcript and Presenter's Notes

Title: please not one user account for all users best joke is sys


1
2112InterBase Security
  • daniel magin
  • better office
  • germany

2
InterBase Security
  • All InterBase Versions
  • InterBase Security 5.x,6.x,7.0,7.1
  • InterBase Security 7.5
  • Hardware

3
InterBase Security all Versions
  • Over 80 of all InterBase Server runs with sysdba
    mastekey
  • Over 98 of all InterBase Servers runs on Port
    3050
  • CHANGE !
  • Everybody knows this!

4
InterBase Security all Versions
  • Nobody needs access to the database files (.gdb,
    .ib). The InterBase Server Process only need
    read/write permissons.
  • This is also important for the isc4.gdb (V5,6) or
    admin.ib (V7)

5
InterBase Security all Versions
  • Do not copy a .gdb or .ib file! Only Copy the
    backup file. You have on your machine
  • InterBase cache
  • Operatingsystem cache
  • Harddisk controller cache
  • Harddisk cache

6
InterBase Security all Versions
  • And the most important thing
  • It is not a backup
  • It is a running RESTORE
  • TEST YOUR BACKUPS

7
InterBase Security all Versions
  • If you use archive software, do not archive the
    .gdb .ib files (remember cache?)
  • Archive the .gbk files
  • Use the system scheduler to produce backups for
    archiving on tape, cd, dvd,

8
InterBase Security all Versions
  • Shadow(Mirror) your Database
  • Replicate your Database

9
InterBase Security all Versions
  • User
  • Please not one user account for all users (best
    joke is sysdba)
  • Passwords
  • Dont give the correct Password to the user
    (???????????????????)
  • Manipulate the enterd password in the login
    dialoguser ABC -gt send to InterBase BCA
  • Only with the correct application the user can
    connect to the database, but not for example with
    the odbc driver to get all table datas to excel
    and send this to a business rival.

10
InterBase Security all Versions
  • Store extreme confidental Datas not clear in
    the database like
  • Passwords
  • Revenues
  • Payment Rolls
  • Encode/Decode this values

11
InterBase Security V5.x,6.0
  • RDB Tables
  • Everybody can change the RDBTables. This Tables
    are the internal System Tables and are the heart
    of your database. With InterBase 6.5 this problem
    was changed. Only SYSDBA, or users with the
    grants can do modifications on this tables.
    Update your InterBase Server.

12
InterBase Security
  • Whats new in InterBase 7.5
  • for Security

13
InterBase Security V7.5
  • Multi-Versioning
  • InterBase 7.5 now allows multiple versions of
    InterBase servers to run simultaneously. In the
    past multiple versions of the InterBase server
    could not be run on the same machine. Previously
    when an application thatutilized one version of
    InterBase, another application that utilized
    another version of InterBase could not be run.
    Now with InterBase 7.5 Borland has added the
    ability run multiple versions of InterBase on the
    samemachine. With InterBase 7.5 one previous
    version (major release) of InterBase, i.e.
    InterBase 6.x will be able to be run
    simultaneously.
  • LIVEDEMO

14
InterBase Security V7.5
  • Multi-Versioning
  • You can run n InterBase Server
  • You can run 1 lt7.1 and n 7.5 Server
  • Replicate this server in both directions
  • n-Servers for n-Companies (CPU Controlling)
  • If one service is crashing connect to the second
    server
  • Server Hosting

15
InterBase Security V7.5
  • Automatic rerouting or databases
  • Now that InterBase 7.5 allows multiple versions
    of InterBase to run on the same machine this
    feature will allow configurations where some
    database connections can be rerouted to a
    different InterBase server instance on the same
    machine.

16
InterBase Security V7.5
  • Server side database alias
  • Database alias renames a database file within the
    context of the server. This beneficial feature
    which enables clients to connect to databases
    regardless of the knowledge of its exact
    location.
  • LIVEDEMO

17
InterBase Security V7.5
  • And my long long wish (Charlie i love you!)
  • Embedded database user authentication
  • This is a security enhancement new in InterBase
    7.5. Now that InterBase 7.5 can manage multiple
    databases for unrelated applications the embedded
    database user authentication feature allows
    custom user account management that is not shared
    with other InterBase applications.
  • LIVEDEMO

18
Hardware
  • Raid System
  • Change the InterBase temp dir to a seperate
    harddisk (the operating system harddisk is busy
    enough)
  • Between WebServers and InterBase Server go over a
    seperate network(card)
  • Hardware Firewall with SQL sniff technique

19
Questions?
20
Thank You
  • 2112
  • InterBase Security
  • Please fill out the speaker evaluation
  • You can contact me further at dmagin_at_better-offi
    ce.com
  • dmagin_at_borland.com
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "please not one user account for all users best joke is sys" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!