Re: [HACKERS] psql and security

From: "Colin 't Hart" <cthart(at)yahoo(dot)com>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: [HACKERS] psql and security
Date: 2001-09-21 12:08:44
Message-ID: 9ofamd$15hp$1@news.tht.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general pgsql-hackers

Tatsuo Ishii:

> As you can see, psql reconnect as any user if the password is same as
> foo. Of course this is due to the careless password setting, but I
> think it's better to prompt ANY TIME the user tries to switch to
> another user. Comments?

Does postgres have a concept of a 'root' user? Then the password should
only be prompted when one isn't root; ie. adopt Unix semantics.

Cheers,

Colin

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message Marc G. Fournier 2001-09-21 12:16:59 Re: Major change to CVS effective immediately ...
Previous Message Tatsuo Ishii 2001-09-21 10:56:27 psql and security

Browse pgsql-hackers by date

  From Date Subject
Next Message Marc G. Fournier 2001-09-21 12:11:23 Re: Further CVS errors
Previous Message Marc G. Fournier 2001-09-21 12:08:32 Re: cvsup trouble