Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to disable embedded connections following the Firebird 3.0 Quick Start Guide [CORE6307] #2328

Closed
firebird-automations opened this issue May 17, 2020 · 7 comments
Closed

Unable to disable embedded connections following the Firebird 3.0 Quick Start Guide [CORE6307] #2328

firebird-automations opened this issue May 17, 2020 · 7 comments
Labels
affect-version: 3.0.5 component: engine priority: major resolution: wontfix type: bug

Comments

@firebird-automations
Copy link
Collaborator

Submitted by: @luronumen

Attachments:
ERRO_MESSAGE.png

According to the Firebird 3.0 Quick Start Guide (https://firebirdsql.org/file/documentation/reference_manuals/user_manuals/html/qsg3-config.html) to disable embedded connections you need to define the following list of providers on firebird.conf file:

Providers = Remote,Loopback

instead of the default value:

Providers = Remote,Engine12,Loopback

but after remove the Engine12 from the list of the providers the following error message is displayed when it tried to connect with a existing database (e.g.: LOCALHOST:CHRONOS_CIN):

- 335545106 - Error occurred during login, please check server firebird.log for details

===firebird.log===
THUNDERBOY Sun May 17 11:19:07 2020
Authentication error
unavailable database

ENVIRONMENT SETUP

===firebird.conf===
#⁠SETUP
AuthClient = Legacy_Auth, Srp, Win_Sspi
AuthServer = Legacy_Auth, Srp, Win_Sspi
ServerMode = Super
UserManager = Legacy_UserManager, Srp
WireCrypt = Enabled
Providers = Remote,Loopback
#⁠PERFORMANCE
DefaultDbCachePages = 30K
FileSystemCacheThreshold = 2M
LockHashSlots = 30011
LockMemSize = 15M
RemoteServicePort = 3050
TempBlockSize = 2M
TempCacheLimit = 3000M
#⁠SECURITY
SecurityDatabase = $(dir_secDb)/security3.fdb
@firebird-automations
Copy link
Collaborator Author

Modified by: @luronumen

Attachment: ERRO_MESSAGE.png [ 13435 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @luronumen

summary: Unable to disable embedded connections following the Firebird 3.0 Quick Start Guilde => Unable to disable embedded connections following the Firebird 3.0 Quick Start Guide

@firebird-automations
Copy link
Collaborator Author

Commented by: @AlexPeshkoff

Suggested method
Providers = Remote,Loopback
obviously works only on client, on server it should not be used.

The best way is to correctly assign access rights to database files - they should be accessible only to firebird server, not to users, connecting to databases locally. Also one can use xnet:// prefix before database name.

@firebird-automations
Copy link
Collaborator Author

Modified by: @AlexPeshkoff

status: Open [ 1 ] => Resolved [ 5 ]

resolution: Won't Fix [ 2 ]

@firebird-automations
Copy link
Collaborator Author

Commented by: @dyemanov

https://ib-aid.com/en/articles/how-to-make-firebird-3-connect-like-2-5-with-embedded-connection-string/

@firebird-automations
Copy link
Collaborator Author

Modified by: @pcisar

status: Resolved [ 5 ] => Closed [ 6 ]

@firebird-automations
Copy link
Collaborator Author

Commented by: @livius2

You can also use on connect trigger and prohibit there some protocols
Current protocol you can read by:

SELECT RDB$GET_CONTEXT('SYSTEM', 'NETWORK_PROTOCOL') FROM RDB$DATABASE

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
affect-version: 3.0.5 component: engine priority: major resolution: wontfix type: bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@firebird-automations