| From: | Allan Kamau <kamauallan(at)yahoo(dot)com> |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Preventing database access (including valid users in other databases) |
| Date: | 2005-09-26 10:09:32 |
| Message-ID: | 20050926100933.95050.qmail@web53507.mail.yahoo.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
I would like to prevent users including users who may
be valid in other databases from accessing a
particular database, I have excluded database
username associations of their usernames with the
database in the hba.conf file, but I observed that
they can still connect to the database, query metadata
(by use of \d) but cannot perform queries. Is there a
way to fully prevent database connect and query of
metadata?
Interesting scenario, I have a user who owns database
objects (tables, sequences) in a database, now I have
decided not to allow the user by connect to the
database by excluding the user's username from the
database username association in the hba.conf, I
restarted the server. However the user can still
connect to the database, and the user can query the
objects they own but cannot query objects they do not
own in that database. Is this the expected behaviour
and should I explicitly change ownership of the
objects.
Allan.
__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Gourish Singbal | 2005-09-26 13:58:30 | Re: vacuum message |
| Previous Message | Chris Browne | 2005-09-26 03:43:54 | Re: Performance question: Restore + INDEX |