[DERBY-5395] By default, only the DBO should be allowed to run several of the diagnostic VTIs. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 10.9.1.0
Fix Version/s: 10.5.3.2, 10.6.2.4, 10.7.1.4, 10.8.2.2, 10.9.1.0
Component/s: SQL
Labels:
None

Urgency:
Normal
Issue & fix info:

Release Note Needed
Bug behavior facts:

Security

Description

Only the DBO should be allowed to run the following VTIs:

syscs_diag.statement_cache
syscs_diag.transaction_table
syscs_diag.error_log_reader( )
syscs_diag.statement_duration()

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SafeCacheViewer.java
31/Aug/11 18:37
0.4 kB
Richard N. Hillegas
releaseNote.html
31/Aug/11 20:03
5 kB
Richard N. Hillegas
derby-5395-01-ac-protectVTIs.diff
30/Aug/11 19:32
11 kB
Richard N. Hillegas

Issue Links

is depended upon by

DERBY-5404 Document DBO restriction for four diagnostic VTIs

Closed

relates to

DERBY-5399 Reimplement the sensitive diagnostic VTIs as table functions so that the DBO can grant SELECT access to them in a straightforward way.

Open

Activity

People

Assignee:: Richard N. Hillegas

Reporter:: Richard N. Hillegas

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 29/Aug/11 15:03

Updated:: 02/May/13 02:29

Resolved:: 02/Sep/11 14:37