Trusted users and groups (UNIX)
A trusted user or a trusted group is a user or group that you empower with administering the database server and other important systems.
Trusted users
To run HCL OneDB™ securely, you must trust the following users on your host computer:
- root
- The host environment is not secure unless you can trust anyone who has been legitimately designated a superuser.
- bin and sys
- Some environments have these user accounts set up to own programs in system directories such as /bin and /usr/lib when the owner is not root.
- informix
- The database server is not secure unless you can trust anyone who has been legitimately given the most authoritative privileges over the HCL OneDB instance.
Trusted groups
You must also trust the following groups:
- Group informix
Because group informix must have read and write permissions on the chunk files that hold data, any user in this group can read or modify any unencrypted data in a database. The only user that belongs to group informix is user informix.
Because group informix must have read and write permissions on the chunk files that hold data, any user in this group can read or modify any data in a database. The only user that belongs to group informix is user informix.
- Group ID 0 (zero)
This group typically has authority over many key directories. The name of the account with group ID 0 varies across operating systems: group root, group wheel or group system.
- Groups bin and sys (when present)
These groups typically administer system files and directories that do not belong to group root.