Skip site navigation (1) Skip section navigation (2)

Permissions/security on pg_* tables?

From: Dax Kelson <dkelson-list-pgsql-admin(at)inconnect(dot)com>
To:
Cc: pgsql-admin(at)postgreSQL(dot)org
Subject: Permissions/security on pg_* tables?
Date: 1998-11-16 06:08:27
Message-ID: Pine.LNX.4.02A.9811152255070.8418-100000@brookie.inconnect.com (view raw or flat)
Thread:
Lists: pgsql-admin
Is it normal/desirable for any user to be able to select (haven't tried
insert/update) in the pg_* tables?

Is it possible to GRANT/REVOKE on the pg_* tables?  It seems it is.  How
can you see the permissions if \z doesn't work on the pg_* tables?

Given a multi-user environment were each user (and the sysadmin) values
security quite highly, what is the best way to secure PostgreSQL as
tightly as possible (not just looking at data in tables, but general
snooping around)?

In pg_hba.conf under "host" the second parameter is "dbname".  Is it
possible to have a list of databases?

Ie:

host   db1,db2,db3     10.0.0.3   255.255.255.255 crypt

Or is it limited to (all|samename|onedbname)?

Thanks for your help,
Dax Kelson
Internet Connect, Inc.


In response to

pgsql-admin by date

Next:From: Alex VorobievDate: 1998-11-16 18:00:32
Subject: syntax error 2299 creating template db; making RPM/Linux
Previous:From: Dax KelsonDate: 1998-11-16 05:55:04
Subject: Re: [ADMIN] New to PostgreSQL, is this a DoS?

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group