Skip site navigation (1) Skip section navigation (2)

Re: Disable TRUST authentication mode

From: Frank Lanitz <frank(at)frank(dot)uvena(dot)de>
To: pgsql-admin(at)postgresql(dot)org
Subject: Re: Disable TRUST authentication mode
Date: 2012-03-10 15:19:07
Message-ID: 20120310161907.aa9549a7ed9ac0b0700b97c4@frank.uvena.de (view raw or flat)
Thread:
Lists: pgsql-admin
On Sat, 10 Mar 2012 20:45:38 +0530
c k <shreeseva(dot)learning(at)gmail(dot)com> wrote:

> I am not managing the customer database. The problem is related with
> the IT department of the customer who has the access to the database
> server and the fraud persons from this department can chnage the
> authentication to trust to get the access to database without knowing
> the passwords and even to superuser accounts.

This most likely sounds like a social problem you _cannot_ solve with
technique. However, ensure users you don't trust are not allowed to
write pg_hba.conf e.g. by don't giving root/postgres-user rights on
that machine. 

Cheers, 
Frank 
-- 
Frank Lanitz <frank(at)frank(dot)uvena(dot)de>

In response to

pgsql-admin by date

Next:From: c kDate: 2012-03-10 15:21:58
Subject: Re: Disable TRUST authentication mode
Previous:From: Jan LentferDate: 2012-03-10 15:16:03
Subject: Re: Disable TRUST authentication mode

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group