From: | Bruce Momjian <maillist(at)candle(dot)pha(dot)pa(dot)us> |
---|---|
To: | gabor(at)vmunix(dot)com (Gabor) |
Cc: | pgsql-admin(at)postgreSQL(dot)org |
Subject: | Re: [ADMIN] database security |
Date: | 1998-06-06 16:57:08 |
Message-ID: | 199806061657.MAA01187@candle.pha.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin |
>
> How do I ensure that a user cannot open someone else's database and
> create tables there? Right now all users have to use passwords and
> they cannot see each others tables when they log into someone else's
> database but they can create tables which the owner of the database
> cannot remove. This is annoying to me. I don't want to have to warn
> people that they will lose their priviliges. I would like postgres to
> not allow this. Any advice?
See the pg_hba.conf file. Looks especially for the 'sameuser' option.
It prevents you from having to list each user and database combination.
Let us know if that does not solve your problem.
--
Bruce Momjian | 830 Blythe Avenue
maillist(at)candle(dot)pha(dot)pa(dot)us | Drexel Hill, Pennsylvania 19026
+ If your life is a hard drive, | (610) 353-9879(w)
+ Christ can be your backup. | (610) 853-3000(h)
From | Date | Subject | |
---|---|---|---|
Next Message | Harri Varpanen | 1998-06-08 09:19:04 | SYSVSEM? |
Previous Message | Gabor | 1998-06-06 16:07:50 | database security |