2016 Postmortem
In reply to the discussion: What information from the Sanders campaign does Clinton have? When did they get it? How many times [View all]notadmblnd
(23,720 posts)Someone else told me that the problem was with field level database permissions. We were talking about why any users would have access to the database during maintenance. Others have said it was a patch. A patch would be considered maintenance. My argument was- no users should have been logged on while maintenance was being performed.
Their argument was that field level database permissions wern't difficult to change and not a big deal(Sysadmin opens a window, clicks on which permissions that they want you to have- and you got it. Unclick the permissions and the user doesn't have that permission anylonger) and could be done while users are logged onto the database.
Permissions are exactly that. Some part of the database or function that the user is authorized to use or access.
I pretty much ceded the point. However, I pointed out, that if it was a field level database issue with user or group permissions- then either the sysadmin or the dba had to turn them off or on every single time. They just don't turn themselves on and off. I also pointed out that if they were turning themselves off and on randomly, then that would be a bigger problem.
I also pointed out that we don't know if the vendor who was performing the maintenance- was working on the "firewall" issue or some other issue not related to what the Sander's campaign reported in October.
Bottom line- if a critical fix was being performed on the database by the vendor- no users should have been able to log on before the fix was implemented and tested for success before being returned to the users. Having users logged in would risk corrupting the database.
If it wasn't a critical fix- why was it being implemented during normal business hours and not during their regular scheduled maintenance window?
If it was the simple fix as the user I was discussing this with had indicated. Then someone- sysadmin or dba had to have logged on and given the Sanders Group the permissions to access the Clinton's Group as it is not possible for users to turn these permissions off and on themselves.
So, my question is- Does anyone know what exactly the vendor was working on? A patch? A field level permission? Or something else? And why were users on the database when it was being performed by the vendor?