| From: | "scott(dot)marlowe" <scott(dot)marlowe(at)ihs(dot)com> |
|---|---|
| To: | Igor Georgiev <gory(at)alphasoft-bg(dot)com> |
| Cc: | <pgsql-hackers(at)postgresql(dot)org>, <pgsql-admin(at)postgresql(dot)org> |
| Subject: | Re: [HACKERS] Security question : Database access control |
| Date: | 2002-10-22 15:13:43 |
| Message-ID: | Pine.LNX.4.33.0210220913220.24848-100000@css120.ihs.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin pgsql-hackers |
On Tue, 22 Oct 2002, Igor Georgiev wrote:
> > > edit *pg_hba.conf *
> > > # Allow any user on the local system to connect to any
> > > # database under any username, but only via an IP connection:
> > > host all 127.0.0.1 255.255.255.255 trust
> > > # The same, over Unix-socket connections:
> > > local all trust
> > what about reading pg_hba.conf comments?
> > local all md5
> >
>
> Ok, but my question actually isn't about pg_hba.conf comments, i read enough
> but what will stop root from adding this lines or doing su - postgres ??
>
Nothing, root is GOD in unix. He can do whatever he wants.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Gareth Kirwan | 2002-10-22 15:14:09 | Quickie about Database locations |
| Previous Message | Andrew Sullivan | 2002-10-22 15:11:43 | Re: Using oid with RServ w/ Postgresql 7.2 |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Rod Taylor | 2002-10-22 15:26:30 | Re: [HACKERS] Security question : Database access control |
| Previous Message | Igor Georgiev | 2002-10-22 15:05:38 | Security question : Database access control |