Skip site navigation (1) Skip section navigation (2)

Re: Can I restrict backups?

From: Andreas <maps(dot)on(at)gmx(dot)net>
To: Scott Marlowe <smarlowe(at)g2switchworks(dot)com>
Cc: pgsql-admin(at)postgresql(dot)org
Subject: Re: Can I restrict backups?
Date: 2007-05-23 08:44:36
Message-ID: 4653FEF4.3090806@gmx.net (view raw or flat)
Thread:
Lists: pgsql-admin
Scott Marlowe schrieb:
> Andreas wrote:
>> now this might be a bit of a silly question, but I'll give it a shot 
>> anyway.
>>
>> I'm working on a remote database for a few employees of a rather 
>> small startup company where at least a few will get teleworking jobs. 
>> They'll get a ms-access application that connects via ODBC from their 
>> home.
>>
>> They'll have limited access to the tables. Some will be just readable 
>> or writable.
>> Obviously to work with the most intersting data they'll need reading 
>> an writing access.
>>
>> Could I somehow avoid that one of them uses pg_dump or even Access 
>> itself to pull all the data out and sell it to a competitor? 
>
> You have conflicting objectives here.
> You give them read access to the data, but you don't want them to read 
> it.
That's why I wrote "silly question".
>
> The real issue here is a legal one.  Once you let the data go from the 
> server to their machine, who knows what they'll do with it.

Right.
It's like that. They should work on projects that only contain a subset 
e.g. of customer addresses and subsequently on the task related objects 
like orders regarding the current project.

The staff of my customer has quite some fluctuation since he hires 
mainly project based university students who can't work longer than a 
few weeks anyway.
There's now and then one among them who knows a wee bit more than enough 
to test the limits of the work environment.

We just want to stop them to run off with the content of our database on 
to of the usual pencil and coffee pot.

The problem - not only - of my customer is that he primarily has to 
trust strange people enough to grant them access to the very base of his 
business and this base could be carried away on an USB stick or piped 
out via email or whatever.
Legal repercussions against the individual when the worst case happened 
are no actual solution, I fear.

That must be a common problem for a lot of businesses so there might be 
concepts to counter this threat.


In response to

Responses

pgsql-admin by date

Next:From: Mondi RaviDate: 2007-05-23 08:53:58
Subject: how to view all database,tables,users
Previous:From: Purusothaman ADate: 2007-05-23 08:34:09
Subject: Re: [GENERAL] OIDs - file objects, are damaged by PostgreSQL.

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group