He said, "For small, and really small companies they already have the talent to deal with the database directly because that's how they handle most of their problems because they don't have a "console" interface. So this would be just another product for them, and the technical staff wouldn't find it terribly useful because they already know how to interact with the database.
For medium to large companies it doesn't fit because those companies spend all of their time trying to limit direct access to the database, so buying a tool that makes it easier is counter productive.
However, it's a cool idea and looks like it was well implemented."
Oh, I forgot to add that he said "Allowing a 3rd party web site to connect directly to a production database for the purpose allowing direct database manipulation will only happen with companies that don't have a security department, or their "security person" is just in name only. There are so many things that can go wrong that is just not worth doing. Even if this could run on site, is runs against basically all Information Security and IT operations best practices."
He said, "For small, and really small companies they already have the talent to deal with the database directly because that's how they handle most of their problems because they don't have a "console" interface. So this would be just another product for them, and the technical staff wouldn't find it terribly useful because they already know how to interact with the database.
For medium to large companies it doesn't fit because those companies spend all of their time trying to limit direct access to the database, so buying a tool that makes it easier is counter productive.
However, it's a cool idea and looks like it was well implemented."
Oh, I forgot to add that he said "Allowing a 3rd party web site to connect directly to a production database for the purpose allowing direct database manipulation will only happen with companies that don't have a security department, or their "security person" is just in name only. There are so many things that can go wrong that is just not worth doing. Even if this could run on site, is runs against basically all Information Security and IT operations best practices."