Revoke Public Permissions on File Access Routines

Previous page
Table of content
Next page

By default, public can execute the file access functions such as lotofile, filetoclob, and ifx_file_to_file. This can allow attackers to read and write files on the server. To help resolve this security hole, create a role called FileAccess and assign only those users that require file access, as a strict business requirement, membership of this role. Then assign this role the execute permission on the file access routines and revoke the execute permission from public.


Previous page
Table of content
Next page
Database Hacker's Handbook. Defending Database Servers
The Database Hackers Handbook: Defending Database Servers
ISBN: 0764578014
EAN: 2147483647
Year: 2003
Pages: 156
Authors: David Litchfield, Chris Anley, John Heasman, Bill Grindlay
BUY ON AMAZON
Interprocess Communications in Linux: The Nooks and Crannies
SQL Tips & Techniques (Miscellaneous)
Systematic Software Testing (Artech House Computer Library)
PostgreSQL(c) The comprehensive guide to building, programming, and administering PostgreSQL databases
Pocket Guide to the National Electrical Code(R), 2005 Edition (8th Edition)
Professional Struts Applications: Building Web Sites with Struts ObjectRelational Bridge, Lucene, and Velocity (Experts Voice)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy