当攻击者可以访问本地文件时,(H2) 数据库密码会保护吗?
Do (H2) database passwords protect when attacker has access to local files?
这是针对所有数据库服务器,尤其是 H2。对媒体进行物理访问时,数据库密码是否可以保护数据?
我认为它们仅用于保护通过服务器进行的远程访问,如果攻击者具有本地访问权限则不会。我错了吗?
H2 支持file encryption which does protect you if the attacker can read the files. For version 1.4.x, when using the MVStore, the password is hashed with PBKDF2, and the XTS-AES algorithm is used. This is the same as modern disk, hardware, or file system encryption typically works.
这是针对所有数据库服务器,尤其是 H2。对媒体进行物理访问时,数据库密码是否可以保护数据?
我认为它们仅用于保护通过服务器进行的远程访问,如果攻击者具有本地访问权限则不会。我错了吗?
H2 支持file encryption which does protect you if the attacker can read the files. For version 1.4.x, when using the MVStore, the password is hashed with PBKDF2, and the XTS-AES algorithm is used. This is the same as modern disk, hardware, or file system encryption typically works.