Re: [ADMIN] database security

From: Bruce Momjian <maillist(at)candle(dot)pha(dot)pa(dot)us>
To: gabor(at)vmunix(dot)com (Gabor)
Cc: pgsql-admin(at)postgreSQL(dot)org
Subject: Re: [ADMIN] database security
Date: 1998-06-06 16:57:08
Message-ID: 199806061657.MAA01187@candle.pha.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-admin

>
> How do I ensure that a user cannot open someone else's database and
> create tables there? Right now all users have to use passwords and
> they cannot see each others tables when they log into someone else's
> database but they can create tables which the owner of the database
> cannot remove. This is annoying to me. I don't want to have to warn
> people that they will lose their priviliges. I would like postgres to
> not allow this. Any advice?

See the pg_hba.conf file. Looks especially for the 'sameuser' option.
It prevents you from having to list each user and database combination.

Let us know if that does not solve your problem.

--
Bruce Momjian | 830 Blythe Avenue
maillist(at)candle(dot)pha(dot)pa(dot)us | Drexel Hill, Pennsylvania 19026
+ If your life is a hard drive, | (610) 353-9879(w)
+ Christ can be your backup. | (610) 853-3000(h)

In response to

Browse pgsql-admin by date

  From Date Subject
Next Message Harri Varpanen 1998-06-08 09:19:04 SYSVSEM?
Previous Message Gabor 1998-06-06 16:07:50 database security