Tag Archives: SYSADM

Beware of ‘over-federating’

During a recent DB2-LDAP configuration at a client site, I stumbled upon a bizarre security exposure. Using any DB2 client tool, it was possible to connect to the database as any user without having to get the password right! Once … Continue reading

Posted in Techie Tips | Tagged , , , , | 1 Comment