| From: | "Andrew Dunstan" <andrew(at)dunslane(dot)net> |
|---|---|
| To: | "Karel Gardas" <kgardas(at)objectsecurity(dot)com> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Where to hook my custom access control module? |
| Date: | 2007-05-09 14:28:57 |
| Message-ID: | 63922.75.177.135.163.1178720937.squirrel@www.dunslane.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Karel Gardas wrote:
>
> Hello,
>
> first of all, I've tried to ask on pgsql-general mailing list as advised,
> but no answer.
>
> I'd like to look at a possibility of integrating OpenPMF
> (http://www.openpmf.org) with the PostgreSQL. There is a possibility to
> have a "weak" integration by using a provided rule system and SQL, but
> this way we would lose central management functionality of OpenPMF,
> especially its policy violation notifications and we'll need to
> synchronize rules with policies from time to time. So now I think about
> how to directly integrate some kind of OpenPMF policy enforcement point
> into the PostgreSQL. For this I would need some access control hook inside
> PostgreSQL which would be called on every action and my PEP would get a
> chance to deny some access. Is there anything like that supported in the
> PostgreSQL?
>
Exactly what is "open" about this product other than the name? It looks
closed and proprietary to me.
cheers
andrew
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Karel Gardas | 2007-05-09 14:41:42 | Where to hook my custom access control module? |
| Previous Message | Oleg Bartunov | 2007-05-09 13:49:36 | Re: Cannot make GIN intarray index be used by the planner |