|
From: Jim Damato <jdamato@dollargeneral.com> > If I understand this correctly, you've been saying that a program can access > data off disk directly -- the traditional methods of access and the security > layers are bypassed. The program isn't really opening a database file, and > even OS/400 user/object security is moot. yes > > I think Joe Pluta and others have suggested that this exposure is an > esoteric example. I'm inclined to feel the same -- most shops have more > glaring "real world" exposures. it is not esoteric. What can be more glaring that a guy having complete and undected access to all of your machine. > What do you think? Are there other systems/databases that are inherently > better equipped to protect you from the types of exposures SLS presents? > when you are God on any system you can do anything. The SLS just makes this particularly easy. I know I like to spread the warnings of this, but I feel that we have beaten this old horse enough for now...
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
