| From: | "Chris Ochs" <chris(at)paymentonline(dot)com> |
|---|---|
| To: | <pgsql-general(at)postgresql(dot)org> |
| Subject: | Fw: Feature idea |
| Date: | 2004-06-15 15:23:17 |
| Message-ID: | 007601c452ec$af543f30$250a8b0a@chris |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
You know I didn't even think about that, duh. I was thinking of using it
inside a function where the password could be obtained on the database
server itself somehow, avoiding the need to pass any passwords from the web
application and simplifying a rather complicated permission structure we
have where we have anonymous users that need insert rights on a whole bunch
of different schema's.
Chris
> ----- Original Message -----
> From: "Bruce Momjian" <pgman(at)candle(dot)pha(dot)pa(dot)us>
> To: "Chris Ochs" <chris(at)paymentonline(dot)com>
> Cc: <pgsql-general(at)postgresql(dot)org>
> Sent: Tuesday, June 15, 2004 8:02 AM
> Subject: Re: [GENERAL] Feature idea
>
>
> > Chris Ochs wrote:
> > >
> > > What if SET SESSION AUTHORIZATION could also accept a password so that
> non
> > > superusers could switch to a different user? How difficult would this
> be?
> >
> > Well, the password would go over the wire unencrypted, causing a
> > security problem.
> >
> > --
> > Bruce Momjian | http://candle.pha.pa.us
> > pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
> > + If your life is a hard drive, | 13 Roberts Road
> > + Christ can be your backup. | Newtown Square, Pennsylvania
> 19073
> >
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2004-06-15 15:29:42 | Re: Feature idea |
| Previous Message | Chris Ochs | 2004-06-15 15:21:03 | Re: Feature idea |