From: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | Christopher Browne <cbbrowne(at)acm(dot)org> |
Cc: | pgsql-admin(at)postgresql(dot)org |
Subject: | Re: Disk Encryption - Postgresql vs. Oracle |
Date: | 2005-04-03 01:43:38 |
Message-ID: | 200504030143.j331hcL26466@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin pgsql-general |
Christopher Browne wrote:
> Martha Stewart called it a Good Thing when pgman(at)candle(dot)pha(dot)pa(dot)us (Bruce Momj$
> > Wow, nice analysis. Should this be in our documentation somewhere?
>
> Suggest a suitable section and I'd be more than happy to send in a
> patch adding this in. The only place I see pgcrypto referred to
> (which ought to be a pointer to "right place") is in the release
> notes. Or perhaps this is an item for FAQ.html?
I think Server Run-Time environment is the proper place, perhaps as a
new section at the end:
http://www.postgresql.org/docs/8.0/interactive/runtime.html
I think your three approaches of filesystem-based, column-based, and
client-side based is a good analysis that should be in the
documentation. It isn't 100% PostgreSQL-specific, but showing how
pgcrypto, SSL, and encrypted file systems fit together is helpful. In
fact our MD5-encryption of the stored password is another relivant issue.
--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073
From | Date | Subject | |
---|---|---|---|
Next Message | Tom Lane | 2005-04-03 04:18:00 | Re: PITR/Online Backups? When can I delete archived WAL logs? |
Previous Message | Christopher Browne | 2005-04-02 18:17:22 | Re: Disk Encryption - Postgresql vs. Oracle |
From | Date | Subject | |
---|---|---|---|
Next Message | Sean Davis | 2005-04-03 01:44:09 | Re: general purpose full text indexing |
Previous Message | Michael Fuhr | 2005-04-03 01:27:53 | Re: join error? |