Fenced user and administration server user.
The fenced user is a user under which some stored procedures ("fenced"
stored procedures) can run to have reduced operating system authority.
This can help prevent fenced stored procedures from overwriting
instance files since the OS will prevent it.
The DB2 administration server (DAS) user is the user under which the
DAS service runs. It is this service which you are really using with
the Control Center. In this case, the service is set up for the
opposite reasons from the fenced user: it's to prevent db2inst1 from
overwriting your admin configuration.
Also, the stored procedures and UDFs don't have access to the DB2 address
space and, thus, a malicious or buggy function cannot crash the database
engine. I trusted (not fenced) UDF/SP has a much better chance to do that,
even though it's not so easy there either.
阅读(1147) | 评论(0) | 转发(0) |
