Issue Details (XML | Word | Printable)

Key: CORE-3329
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Alexander Peshkov
Reporter: Alexander Peshkov
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Firebird Core

Windows administrator gets RDB$ADMIN role when this is not expected

Created: 02/Feb/11 11:04 AM   Updated: 04/Feb/11 01:44 PM
Component/s: None
Affects Version/s: 3.0 Initial, 2.5.0
Fix Version/s: 2.5.1, 3.0 Alpha 1

Time Tracking:
Not Specified

Environment: Windows

Planning Status: Unspecified


 Description  « Hide
This was reported to me privately by Paul Vinkenoog.

If someone has been granted the RDB$ADMIN role in a user database, he must specify it when connecting in order to exercise the privileges that come with it.
However, I have observed the following:
Grantee is a Windows administrator.
If he logs in with an empty role, CURRENT_ROLE is RDB$ADMIN.
Please notice that AUTO ADMIN MAPPING is off in the database, so that's not the explanation.


 All   Comments   Work Log   Change History   Version Control   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
Alexander Peshkov added a comment - 02/Feb/11 11:33 AM
This issue is not critical for security - user gets role which he is granted, just not requested this time. Though certainly it was worth fixing.