473,327 Members | 1,936 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,327 software developers and data experts.

WANT limit the database accessible to some machine

DB2 V8 UDB fixpack 5 on windows

I dont want all the client can do catalog, so that they cannot access
DB2 directlry.
This is all the DBM CFG I found related,
CATALOG_NOAUTH
DISCOVER
DISCOVER_INST
and DB CFG
DISCOVER_DB
But those cannot limit the client do a
catalog tcpip node
and
catalog db
from their machine.

How can I hide the database?
Thanks

Nov 12 '05 #1
8 1358
<sh*******@gmail.com> wrote in message
news:11**********************@o13g2000cwo.googlegr oups.com...
DB2 V8 UDB fixpack 5 on windows

I dont want all the client can do catalog, so that they cannot access
DB2 directlry.
This is all the DBM CFG I found related,
CATALOG_NOAUTH
DISCOVER
DISCOVER_INST
and DB CFG
DISCOVER_DB
But those cannot limit the client do a
catalog tcpip node
and
catalog db
from their machine.

How can I hide the database?
Thanks

You can revoke connect authority to public, and grant it to specific users.
This a database authorization.
Nov 12 '05 #2
The username/password maybe calculated by some hacking tools. So I want
also limit the computer.

Nov 12 '05 #3
sh*******@gmail.com wrote:
The username/password maybe calculated by some hacking tools. So I want
also limit the computer.


Is using a firewall to control the DB2 instance-specific port a possibility?

--
Knut Stolze
DB2 Information Integration Development
IBM Germany
Nov 12 '05 #4
Only want to limit at the database level, not instance level. Currently
there is multiple db under 1 instance.
Have to create multiple db2 instance if using Firewall.

Nov 12 '05 #5
Ian
sh*******@gmail.com wrote:
The username/password maybe calculated by some hacking tools. So I want
also limit the computer.


Then use AUTHENTICATION = SERVER_ENCRYPT or Kerberos.

Nov 12 '05 #6
Ian
sh*******@gmail.com wrote:
Only want to limit at the database level, not instance level. Currently
there is multiple db under 1 instance.
Have to create multiple db2 instance if using Firewall.


Also, you realize that you can "hide" the database from discovery, but
you can't prevent someone who knows the IP address, port number and
database name from connecting (i.e. Java Type 4 driver - you don't
even have to catalog the database).
Nov 12 '05 #7
Are you using domain security and active directory ? Perhaps there is a
way to add the workstation computers you want to allow access to a new
group and allow access via that ? Not sure it would work but it may if
you add the groups accordingly to DB2 and set the access appropriately
at the domain controller.

Who knows .. just a thought.

Nov 12 '05 #8
Which is why you should be using Kerberos authentication.

Limiting the computer won't help, as the IP address can be spoofed. Liniting
cataloguing won't help, as you don't need to catalogue to connect. Solve
security problems by getting the security right, not by attacking symptoms
that aren't even relevant.

<sh*******@gmail.com> wrote in message
news:11**********************@g43g2000cwa.googlegr oups.com...
The username/password maybe calculated by some hacking tools. So I want
also limit the computer.

Nov 12 '05 #9

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

16
by: John | last post by:
Hello. If I want to set up my first database and start using it in Dreamweaver what do I need to do? The book I'm working on has a CD with the database on. It is telling me to put it in the...
5
by: great_googley_moogley | last post by:
Greetings, I am in the process of installing a SQL database at a customer location. I have determined that there are 3 ways to do this, and I wanted to know which is the best of the 3. 1...
5
by: mr.iali | last post by:
Hi Everyone I would like to get into software developent using a programming language like c++, java or pl/sql for oracle. I have no idea where to start from. Which language is there more...
8
by: lkrubner | last post by:
An old friend of mine recently approached me and said something like: "I've a computer at my office that has an Access database running on it. We've most of our company info in there. We'd like to...
4
by: emily_g107 | last post by:
Hi, I need to limit results in the following query type: ...
6
by: Hannu | last post by:
Hi. In the ldb file you can see the users of the mdb-file. If you open the mdb-file your machine and username will be written in the lbd- file. Allthough you close the mdb-file your name won't...
12
by: Ann Marinas | last post by:
Hi all, I would like to ask for some help regarding separating the asp.net webserver and the sql server. I have created an asp.net application for a certain company. Initially, we installed...
5
by: HSP | last post by:
hi. i need to restore an old database. The db was backed up using a DLT drive, using 2 volumes. The content for the tapes was copied to file onto Solaris machine using rsh and dd (for backup...
3
by: John Dann | last post by:
We've got a VB2005 program written some time back that we're trying to do some maintenance on still from within VB2005 but now running on a Vista Business PC (which I think may be relevant to the...
0
by: ryjfgjl | last post by:
ExcelToDatabase: batch import excel into database automatically...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...
0
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.