What file and directory permissions to set for database files on Linux?


It's wise to keep your databases in a directory with following permissions (770 in chmod terminology):

drwxrwx--- 2 firebird firebird 1136 2007-05-31 18:21 databases/

If it's a development machine and you wish to be able to manipulate files directly, add yourself to the 'firebird' group. Please note that you usually need to completely log off before the group membership changes are applied to your account on Linux.

As for the database files, use the following privilege (660 in chmod terminology):

-rw-rw---- 1 firebird firebird 6123520 2007-05-14 14:49 database.fdb

This ensures that only the firebird user (typically the one that runs the Firebird server) and members of firebird group (admins on the machine) will be able to access databases directly.

Note that you must give write access for database files, even if users will only run SELECTs. It because each transaction number needs to be recorded in database file.


Do you find this FAQ incorrect or incomplete? Please e-mail us what needs to be changed. To ensure quality, each change is checked by our editors (and often tested on live Firebird databases), before it enters the main FAQ database. If you desire so, the changes will be credited to your name. To learn more, visit our add content page.

If you are a commercial tool maker and your tool features a great way to handle the issue written about in this FAQ, please check out our advertisement page.



All contents are copyright © 2007-2017 FirebirdFAQ.org unless otherwise stated in the text.


Links   Firebird   News   FlameRobin   Home Inventory powered by FB  
Add content   Advertise   About  

Categories
 Newbies
 SQL
 Installation and setup
 Backup and restore
 Performance
 Security
 Connectivity and API
 HOWTOs
 Errors and error codes
 Miscellaneous