Skip site navigation (1) Skip section navigation (2)

Re: viewing source code

From: Andrew Sullivan <ajs(at)crankycanuck(dot)ca>
To: pgsql-performance(at)postgresql(dot)org
Subject: Re: viewing source code
Date: 2007-12-20 20:52:14
Message-ID: 20071220205214.GW4924@crankycanuck.ca (view raw or flat)
Thread:
Lists: pgsql-performance
On Thu, Dec 20, 2007 at 03:35:42PM -0500, Merlin Moncure wrote:
> 
> Key management is an issue but easily solved.  Uber simple solution is
> to create a designated table holding the key(s) and use classic
> permissions to guard it.  

Any security expert worth the title would point and laugh at that
suggestion.  If the idea is that the contents have to be encrypted to
protect them, then it is just not acceptable to have the encryption keys
online.  That's the sort of "security" that inevitably causes programs to
get a reputation for ill-thought-out protections.

A


In response to

Responses

pgsql-performance by date

Next:From: Chris BrowneDate: 2007-12-20 21:03:08
Subject: Re: viewing source code
Previous:From: Merlin MoncureDate: 2007-12-20 20:35:42
Subject: Re: viewing source code

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group