Khangelani Gama <kgama(at)argility(dot)com> wrote:
> the issue we have is that we have many Linux users having root
> access into the system.
Which gives them rights to impersonate any other user on the system
and to erase any audit trail written on that system.
> Auditors wants PostgreSQL to tell who updated what inside the
You might be able to create something which looks plausible without
solving the first problem, but it wouldn't be at all trustworthy.
Consider limiting access to root on your database servers and, in
general, pay attention to the concept of "separation of duties".
In response to
pgsql-admin by date
|Next:||From: David Ondrejik||Date: 2012-03-14 15:01:20|
|Subject: Re: Update actions (with user name) inside PostgreSQL DB -
any version on postgreSQL|
|Previous:||From: Scott Ribe||Date: 2012-03-14 13:39:39|
|Subject: Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL|