Results 1 to 3 of 3
  1. #1
    Join Date
    Apr 2013
    Posts
    33

    Unanswered: DB2 Security question

    We have PUBLIC granted CREATEINAUTH privileges for a particular schema as shown below. Will that PUBLIC still be able to create objects under that schema ( PUBLIC has no CONNECT privilege to any databases in the instance)

    $ db2 "select distinct substr(GRANTOR,1,10) as grantor,substr(grantee,1,10) as grantee,GRANTEETYPE,substr(schemaname,1,10) as schemaname, ALTERINAUTH,CREATEINAUTH,DROPINAUTH FROM sy>

    GRANTOR GRANTEE GRANTEETYPE SCHEMANAME ALTERINAUTH CREATEINAUTH DROPINAUTH
    ---------- ---------- ----------- ---------- ----------- ------------ ----------
    SYSIBM PUBLIC G TESTSCHE1 N Y N
    SYSIBM PUBLIC G TESTSCHE2 N Y N
    SYSIBM PUBLIC G TESTSCHE3 N Y N

  2. #2
    Join Date
    Jun 2003
    Location
    Toronto, Canada
    Posts
    5,516
    Provided Answers: 1
    How do you suppose those who cannot connect to the database create objects in it?
    ---
    "It does not work" is not a valid problem statement.

  3. #3
    Join Date
    Apr 2013
    Posts
    33
    Lets say a package with execuute privilege to PUBLIC has a "CREATE object" statement embedded in the code.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •