AWS AmazonRDS documentation change
Summary
Expanded create_database procedure parameters and added documentation for database_non-restrictive security setting
Security assessment
Documents security implications of database permissions (PUBLIC group access) but does not address a specific vulnerability.
Diff
diff --git a/AmazonRDS/latest/UserGuide/db2-sp-managing-databases.md b/AmazonRDS/latest/UserGuide/db2-sp-managing-databases.md index 33835142b..12fa832cc 100644 --- a//AmazonRDS/latest/UserGuide/db2-sp-managing-databases.md +++ b//AmazonRDS/latest/UserGuide/db2-sp-managing-databases.md @@ -78 +78,8 @@ Creates a database. - db2 "call rdsadmin.create_database('database_name')" + db2 "call rdsadmin.create_database( + 'database_name', + 'database_page_size', + 'database_code_set', + 'database_territory', + 'database_collation', + 'database_autoconfigure_str', + 'database_non-restrictive')" @@ -160,0 +168,14 @@ For more information, see [AUTOCONFIGURE command](https://www.ibm.com/docs/en/db +`database_non-restrictive` + + +The granting of default authorities and privileges within the database. The data type is `varchar`. The default is `N`. + +Valid values: + + * `N` – The created database is restrictive and doesn't grant authorities or privileges. + + * `Y` – The created database is non-restrictive and grants a set of permissions to the special group `PUBLIC`. For more information, see [Default privileges granted on creating a database](https://www.ibm.com/docs/en/db2/11.5.x?topic=ownership-default-privileges-granted-creating-database) in the IBM Db2 documentation. + + + +