Hi all,
I'm trying to figure out how to deploy a SapDB instance on a server where
the server administrator would be considered as 'untrusted'.
In other words, he (the Admin) shouldn't have access in any way to the data
that exists in the db hosted by SapDB.
So, my first guess is that if I doesn't give him any user credentials
presents on SapDB (neither dbm nor database users), he cannot perform any
access to the RDBMS with conventional tools. Is this right?
Moreover, I've opened a DISKD000X file with a text editor and I was
"shocked" by the fact that all the data are simply gettable with a few of
sed or awk code (they are in clear-text). One way to solve this is,
obviously, to crypt the content with the business logic of my application,
but maybe there are other mechanisms to accomplish the same results with a
proper configuration of SapDB... any suggestion here?
If there are any other exposures that my assesment doesn't discovered please
tell me.
TIA
Alexio
