Skip to content
项目
群组
代码片段
帮助
正在加载...
帮助
为 GitLab 提交贡献
登录/注册
切换导航
H
h2database
项目
项目
详情
活动
周期分析
仓库
仓库
文件
提交
分支
标签
贡献者
分枝图
比较
统计图
议题
0
议题
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
CI / CD
CI / CD
流水线
作业
计划
统计图
Wiki
Wiki
代码片段
代码片段
成员
成员
折叠边栏
关闭边栏
活动
分枝图
统计图
创建新议题
作业
提交
议题看板
打开侧边栏
Administrator
h2database
Commits
db2c6dd5
提交
db2c6dd5
authored
8月 30, 2009
作者:
Thomas Mueller
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Improved documentation for tcpAllowOthers, webAllowOthers, pgAllowOthers
上级
3d7d2aaf
隐藏空白字符变更
内嵌
并排
正在显示
2 个修改的文件
包含
19 行增加
和
3 行删除
+19
-3
advanced.html
h2/src/docsrc/html/advanced.html
+13
-0
Server.java
h2/src/main/org/h2/tools/Server.java
+6
-3
没有找到文件。
h2/src/docsrc/html/advanced.html
浏览文件 @
db2c6dd5
...
@@ -50,6 +50,8 @@ Advanced Topics
...
@@ -50,6 +50,8 @@ Advanced Topics
File Locking Protocols
</a><br
/>
File Locking Protocols
</a><br
/>
<a
href=
"#sql_injection"
>
<a
href=
"#sql_injection"
>
Protection against SQL Injection
</a><br
/>
Protection against SQL Injection
</a><br
/>
<a
href=
"#remote_access"
>
Protection against Remote Access
</a><br
/>
<a
href=
"#restricting_classes"
>
<a
href=
"#restricting_classes"
>
Restricting Class Loading and Usage
</a><br
/>
Restricting Class Loading and Usage
</a><br
/>
<a
href=
"#security_protocols"
>
<a
href=
"#security_protocols"
>
...
@@ -900,6 +902,17 @@ It is not required to create a constant for the number 0 as there is already a b
...
@@ -900,6 +902,17 @@ It is not required to create a constant for the number 0 as there is already a b
SELECT * FROM USERS WHERE LENGTH(PASSWORD)=ZERO();
SELECT * FROM USERS WHERE LENGTH(PASSWORD)=ZERO();
</pre>
</pre>
<br
/><a
name=
"remote_access"
></a>
<h2>
Protection against Remote Access
</h2>
<p>
By default this database does not allow others to connect when starting the H2 Console,
the TCP server, or the PG server. Remote access can be enabled using the command line
options -webAllowOthers, -tcpAllowOthers, and -pgAllowOthers. If you enable remote
access, please also consider using the options -baseDir and -ifExists, so that remote
users can not create new databases or access existing databases with weak passwords. Also,
ensure the existing accessible databases are protected using a strong password.
</p>
<br
/><a
name=
"restricting_classes"
></a>
<br
/><a
name=
"restricting_classes"
></a>
<h2>
Restricting Class Loading and Usage
</h2>
<h2>
Restricting Class Loading and Usage
</h2>
<p>
<p>
...
...
h2/src/main/org/h2/tools/Server.java
浏览文件 @
db2c6dd5
...
@@ -60,7 +60,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
...
@@ -60,7 +60,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
* <tr><td>[-web]</td>
* <tr><td>[-web]</td>
* <td>Start the web server with the H2 Console</td></tr>
* <td>Start the web server with the H2 Console</td></tr>
* <tr><td>[-webAllowOthers]</td>
* <tr><td>[-webAllowOthers]</td>
* <td>Allow other computers to connect</td></tr>
* <td>Allow other computers to connect
- see below
</td></tr>
* <tr><td>[-webPort <port>]</td>
* <tr><td>[-webPort <port>]</td>
* <td>The port (default: 8082)</td></tr>
* <td>The port (default: 8082)</td></tr>
* <tr><td>[-webSSL]</td>
* <tr><td>[-webSSL]</td>
...
@@ -70,7 +70,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
...
@@ -70,7 +70,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
* <tr><td>[-tcp]</td>
* <tr><td>[-tcp]</td>
* <td>Start the TCP server</td></tr>
* <td>Start the TCP server</td></tr>
* <tr><td>[-tcpAllowOthers]</td>
* <tr><td>[-tcpAllowOthers]</td>
* <td>Allow other computers to connect</td></tr>
* <td>Allow other computers to connect
- see below
</td></tr>
* <tr><td>[-tcpPort <port>]</td>
* <tr><td>[-tcpPort <port>]</td>
* <td>The port (default: 9092)</td></tr>
* <td>The port (default: 9092)</td></tr>
* <tr><td>[-tcpSSL]</td>
* <tr><td>[-tcpSSL]</td>
...
@@ -84,7 +84,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
...
@@ -84,7 +84,7 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
* <tr><td>[-pg]</td>
* <tr><td>[-pg]</td>
* <td>Start the PG server</td></tr>
* <td>Start the PG server</td></tr>
* <tr><td>[-pgAllowOthers]</td>
* <tr><td>[-pgAllowOthers]</td>
* <td>Allow other computers to connect</td></tr>
* <td>Allow other computers to connect
- see below
</td></tr>
* <tr><td>[-pgPort <port>]</td>
* <tr><td>[-pgPort <port>]</td>
* <td>The port (default: 5435)</td></tr>
* <td>The port (default: 5435)</td></tr>
* <tr><td>[-baseDir <dir>]</td>
* <tr><td>[-baseDir <dir>]</td>
...
@@ -94,6 +94,9 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
...
@@ -94,6 +94,9 @@ public class Server extends Tool implements Runnable, ShutdownHandler {
* <tr><td>[-trace]</td>
* <tr><td>[-trace]</td>
* <td>Print additional trace information; for all servers</td></tr>
* <td>Print additional trace information; for all servers</td></tr>
* </table>
* </table>
* The options -xAllowOthers are potentially risky.
* <br />
* For details, see Advanced Topics / Protection against Remote Access.
* @h2.resource
* @h2.resource
*
*
* @param args the command line arguments
* @param args the command line arguments
...
...
编写
预览
Markdown
格式
0%
重试
或
添加新文件
添加附件
取消
您添加了
0
人
到此讨论。请谨慎行事。
请先完成此评论的编辑!
取消
请
注册
或者
登录
后发表评论