Skip site navigation (1) Skip section navigation (2)

Re: Preventing changes to default settings of a collective account?

From: Alex Gutman <agutman(at)emc(dot)com>
To: tgl(at)sss(dot)pgh(dot)pa(dot)us
Cc: pgsql-admin(at)postgresql(dot)org
Subject: Re: Preventing changes to default settings of a collective account?
Date: 2005-02-24 18:22:09
Message-ID: 20050224182209.B85401A537@usenagutmanx2l.lss.emc.com (view raw or flat)
Thread:
Lists: pgsql-admin
>> (The NOCREATEUSER option used when creating the collective user does
>> prevent it from changing its own password via
>> ALTER USER guest WITH ... PASSWORD ...

>You think so?
>
>This approach is doomed to failure --- the system sees no reason not to
>allow a user to change his own configuration, including his password.

I stand corrected. The command

ALTER USER guest WITH ... PASSWORD ...

now fails under my experimental setup - but it's not due to the
NOCREATEUSER option used when creating the user guest. I haven't
figured out yet how I've finally managed to make it fail (I've lost
count of all the ruses I've tried). Yet in the worst case, I can use
a special PAM authentication method for the user in question - in
which case changing its password via ALTER USER will either fail or
be null and void. So the protection of the user guest's password from
user-made changes must allow for a documented solution.

As to whether this approach is doomed to failure, I'm sure that it
can succeed - the question is only the price. It may require a custom
version of PostgreSQL - either built from patched sources or using a
special loadable shared object (say, 'anon_ro_user.so') preloaded into
each postmaster through a line like

preload_libraries = '$libdir/anon_ro_user:anon_ro_user_init'

in postgresql.conf. It's a very steep price that I'd like to avoid,
though.

>Use more than one username.

Sorry, it's no option. I currently have about 700 users that could
potentially use the same account (associated with an application
through which solely these ~700 users connect to the database).
I must eliminate the administrative overhead of adding/deleting
these PostgreSQL users that shouldn't need to be declared in the
first place.

PS

My PostgreSQL version is 7.4.7.

Thanks,
-----------------------------------------------------------------------------
Alex Gutman, EMC Corp. :: Tel (877) 362-2887 ext. 44962 :: Fax (508) 435-8852

In response to

pgsql-admin by date

Next:From: Zouari FouratDate: 2005-02-24 20:57:46
Subject: lowercase function
Previous:From: Tom LaneDate: 2005-02-24 17:44:00
Subject: Re: [ADMIN] invalid multibyte character for locale

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group