Ensuring resource limits groups security
In order to protect the limits that have been specified
for each user, resource limits groups are securely stored in the
table RDBI.RESOURCE_TABLE that is part of the QMF catalog and resides
on a database server. You must have the authorization to execute
the QMF for Windows Administrator package on the database server
in order to make any changes to a resource limits group. This prevents
unauthorized users from changing the resource limits.
A view named RDBI.RESOURCE_VIEW is defined for the resource limits
table. QMF for Windows accesses the resource limits information
using the view so the table remains intact.
Note:
The <Default> resource limits
group resource limit information is stored in the SDF and not in
the RDBI.RESOURCE_TABLE on the database server. That means any user
who can access the SDF can make changes to the resource limits of
the <default> resource limits group.
Note:
Database servers can be configured in the SDF to
bypass the use of the QMF catalog. Access to those database servers
that do not use a QMF catalog cannot be governed, since resource
limits group information is stored in the QMF catalog.
Note:
Database servers can also be configured in the
SDF to always use a specific catalog. If you require the use of
a specific catalog when accessing a database server, you can ensure
that all users will only have access to the server based on the
resource limits that you have specified.
