stackoom
  简体   繁体   中英

How to prevent OrientDB root user from accessing all databases

 原文  2019-09-02 11:19:04       database/ security/ orientdb

Question

We're using OrientDB in embedded mode. This creates a physical directory with the database on the client's machine.

The database has users and these are password-protected, however, this can be bypassed by clients. To by-pass, the client has to install the server version of OrientDB (on first run 'root' account would be generated), then copy database files from embedded directory to server directory and use the OrientDB Studio .

This means the database can be accessed using root account and this gives access to everything. I know OrientDB offers data encryption but this feels like a part solution to the problem.

So coming to question, Is there a way to prevent root user accessing and modifying the database by configuring database itself? admin, reader and writer user passwords were changed to non-defaults. I am using OrientDB server: 3.0.16 and embedded 3.0.16.

1 answers

solution1
 0  2019-11-21 15:34:59

如果数据库已加密,则用户 root 密码不再有效。

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Prevent public from accessing my root directory and seeing the files etc Show mysql databases as Linux root user How to prevent multiple databases from being created within Android app? Listing databases on a remote OrientDB server Accessing data from other databases - system architecture How to use backup and restore all databases from mongodb? DbDeployer - MySQL instance - Grants for new databases (or root user) How to access data from orientdb on a PHP Page? Can OrientDB handle multiple root How to prevent a user from using space in a tablespace?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM