Normal Versus Privileged Users
Only a SYSDBA, a user with the RDB$ADMIN
role, the owner of a database, or a user with the USE_GBAK_UTILITY
system privilege can take a backup of the database.However, any authenticated user can restore a database backup using the -c[reate]
switch (in Firebird 3.0 and higher, this user will need the CREATE DATABASE
DDL privilege).This means that you must make sure you prevent your backup files from falling into the wrong hands because there is nothing then to stop unauthorised people from seeing your data by the simple process of restoring your backups onto their server.
The database restore will fail, of course, if the user carrying it out is not the database owner and a database with the same filename already exists.