Issue Details (XML | Word | Printable)

Key: CORE-5735
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Alexander Peshkov
Reporter: Alexander Peshkov
Votes: 0
Watchers: 1
Operations

If you were logged in you would be able to see more operations.
Firebird Core

Additional keyholder opens unauthorized connections to encrypted database

Created: 01/Feb/18 01:45 PM   Updated: 17/Apr/18 11:51 AM
Component/s: Engine
Affects Version/s: 3.0.2, 4.0 Alpha 1
Fix Version/s: 3.0.3, 4.0 Beta 1

QA Status: Cannot be tested


 Description  « Hide
Imagine that we have some database on SS connection to which should be possible only from dedicated software providing secret key. Any connections (except one from that SW) should be impossible.
With additional keyholder in which method useOnlyOwnKeys() returns FB_FALSE doing nothing more for that database (i.e. for target database there should be configured 2 KeyHolder plugins) one can attach to that database from any tool provided there is at least one legal (providing required key) connection to it.

 All   Comments   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
Dmitry Yemanov added a comment - 17/Apr/18 05:50 AM
Shouldn't this ticket be opened for public access now, given that v3.0.3 is released?

Alexander Peshkov added a comment - 17/Apr/18 11:38 AM
I think yes - it's time for opening access to it.