|
midrange.com
Rob,
Turning off the Database portion of Operations Navigator will not
resolve this glaring security breach. If someone wants to get to your
database they don't need to use Operations Navigator, ftp, file
transfer or even windows explorer will do the job just as easily.
The only safe way is to use object security.
Regards,
Colin
______________________________ Reply Separator _________________________________
Subject: Op's nav - Graphical UPDDTA
Author: Rob Berendt <rob@dekko.com> at Internet
Date: 24/03/00 13:24
How do we turn off the Database portion of Operations
Navigator? I played with this before but it took a seminar
yesterday to point out this glaring security breach to me
yesterday. Granted we could use object security, but the
reality of that being implemented anytime soon is slim to
none. The breach is this:
Open Op's nav
Expand your 400
Select database
Select libraries
Select a library
Find a database and double click on it.
There you go, a graphical UPDDTA, for all your users to share!
And if you right click on the database, you can add fields and
do all sorts of funky things to a table. Graphical DDS?
Please, no flames on how I shouldn't ask the list this question,
because then more people will know about this hole. The hole
already exists. How do we plug it?
+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---
Received: from uucphost.mcs.net ([192.160.127.93]) by ccgate.bausch.com with
SMTP
(IMA Internet Exchange 3.11) id 0000342C; Fri, 24 Mar 2000 14:39:52 -0500
Received: (from uucp@localhost)
by uucphost.mcs.net (8.9.3/8.8.8) with UUCP id NAA06002;
Fri, 24 Mar 2000 13:39:49 -0600 (CST)
Received: (from majordom@localhost)
by linux.midrange.com (8.9.3/8.8.7) id MAA18081
for midrange-l-outgoing; Fri, 24 Mar 2000 12:25:10 -0600
Received: (from uucp@localhost)
by linux.midrange.com (8.9.3/8.8.7) with UUCP id MAA18068
for MIDRANGE-L@midrange.com; Fri, 24 Mar 2000 12:25:05 -0600
Received: from notes-gw.dekko.com (dekko.com [208.16.99.6])
by uucphost.mcs.net (8.9.3/8.8.8) with SMTP id MAA95257
for <MIDRANGE-L@midrange.com>; Fri, 24 Mar 2000 12:24:35 -0600 (CST)
Received: from notes-gw.dekko.com (NetTalk Internet Connector)
by notes-gw.dekko.com (AltaVista Mail F2.0w BL26wB API)
id 0000_00ef_38db_b2b7_2510;
Fri, 24 Mar 2000 13:23:51 -0500
Date: Fri, 24 Mar 2000 13:24:05 -0500
From: Rob Berendt <rob@dekko.com>
Subject: Op's nav - Graphical UPDDTA
To: MIDRANGE-L@midrange.com
Message-Id: <3646c643.240200@notes-gw.dekko.com>
X-Mailer: Worldtalk (NetTalk for Windows NT 4.5-g5)/MIME
Sender: owner-midrange-l@midrange.com
Precedence: bulk
Reply-To: MIDRANGE-L@midrange.com
Errors-To: list-errors@midrange.com
X-List-Name: Midrange Systems Mailing List (MIDRANGE-L@midrange.com)
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
