Quick Links

Re: PostgreSQL security concerns

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Francesco Casadei <f_casadei(at)libero(dot)it>
Cc:	Ken Causey <ken(at)ineffable(dot)com>, Ian Harding <ianh(at)co(dot)pierce(dot)wa(dot)us>, pgsql-general(at)postgresql(dot)org
Subject:	Re: PostgreSQL security concerns
Date:	2001-06-04 14:19:52
Message-ID:	29488.991664392@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Francesco Casadei <f_casadei(at)libero(dot)it> writes:
> # TYPE DATABASE IP_ADDRESS MASK AUTHTYPE MAP
> local template0 trust
> local template1 trust
> local funland password funland.pwd

If you're going to make template1 accessible via "trust" then you should
expect rather severe lack of security. Better put passwords on it too.

In a security-conscious setup, I don't see any good reason for anyone
but the DBA to be allowed to connect to template1.

BTW, there's no need to allow anyone to connect to template0 at all.

regards, tom lane

In response to

Re: PostgreSQL security concerns at 2001-06-04 10:48:51 from Francesco Casadei

Browse pgsql-general by date

	From	Date	Subject
Next Message	Tom Lane	2001-06-04 14:39:54	Re: CHAR vs VARCHAR w/TOAST
Previous Message	Francesco Casadei	2001-06-04 14:15:15	Re: PostgreSQL security concerns