| From: | "Chris Travers" <chris(at)travelamericas(dot)com> |
|---|---|
| To: | <netadmin(at)vcsn(dot)com>, "Keith G(dot) Murphy" <keithmur(at)mindspring(dot)com> |
| Cc: | "pgsql-general" <pgsql-general(at)postgreSQL(dot)org> |
| Subject: | Re: Best practice? Web application: single PostgreSQL |
| Date: | 2004-01-14 08:10:58 |
| Message-ID: | 011e01c3da76$bb8afcb0$dd44053d@winxp |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
> I do #1- most connections are not persistent though I have done those
> before as well. Security-wise I'm been reviewing the pros and cons
> of this and so far I really can't make much of an argument for #2.
> Just the opposite in fact. The one thing I will be doing though,
> for more security, is create a special webuser for that client.
>
My concern with connection pooling is that the application itself must run
with permission to do anything that any user may do in the application. If
you have a way of using postgresql native accounts, you can actually force
the application to have no rights to the database at all unless the
credentials are supplied by a user. The application then has NO rights to
anything that the user doesn't, and this may allow for better security.
The real drawback for multiple accounts is that each account needs to be
maintained. In environments where this is an issue, I usually create
functions to do this so that my information does not get out of sync.
However, I can imagine this being a concern, security wise.
Best Wishes,
Chris Travers
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2004-01-14 08:24:45 | Re: dump/restore problem |
| Previous Message | Anton.Nikiforov | 2004-01-14 08:08:52 | Re: Postgress and MYSQL |