20.05.2016 11:32, Mark Rotteveel wrote: > >> If it's about routine in machine codes such routine should not exist on >> server. Nor in UDF, nor in plugins. No other solutions. >> What about Java - I hope call to dynamic library loader can be >> restricted by VM? > > Yes it can, but for example the client library (and embedded engine) is > already loaded because that is used by FB/Java itself, so it is available.
But if we can protect external connections within the active (already loaded) library and if JVM can protect from loading other libraries, together it could solve the issue. Dmitry ------------------------------------------------------------------------------ Mobile security can be enabling, not merely restricting. Employees who bring their own devices (BYOD) to work are irked by the imposition of MDM restrictions. Mobile Device Manager Plus allows you to control only the apps on BYO-devices by containerizing them, leaving personal data untouched! https://ad.doubleclick.net/ddm/clk/304595813;131938128;j Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
