« Learning Hadoop | Main | Temporary tables in ASE and column encryption »

22 December 2012


Feed You can follow this conversation by subscribing to the comment feed for this post.

Rob Verschoor

In 15.7 ESD#2, you do not actually need to take the master device into a hex editor: by starting the dataserver with "-A role_name" (plus the rest of the usual options), it will boot up, list out the first 10 logins that have the specified role, and shut down again.
There's also a new "-n" option which works the same but for a specific granular permission (if you use those).

The assumptions around security are that O/S level security is such that unauthorized persons cannot start the server, so that knowledge of the login names is by itself not a security issue (and as you point out, it was always possible to find that information anyway). The reason these options were added is that with the new security enhancements in 15.7 ESD#2, there are more ways to get yourself locked out than before, and these options help to avoid that.

The comments to this entry are closed.

My Photo

About Me

  • My name is Leonid Gvirtz, I'm freelance consultant in database-related areas. I work with various database-related technologies since 1995. I have a vast amount of experience in the design of databases and database-oriented applications, implementation, troubleshooting, performance & tuning, monitoring, and training.

January 2014

Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31