| From: | Bill Moran <wmoran(at)collaborativefusion(dot)com> |
|---|---|
| To: | Furface <furface(at)omnicode(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Limit on number of users in postgresql? |
| Date: | 2007-01-28 18:21:09 |
| Message-ID: | 20070128132109.6bac33eb.wmoran@collaborativefusion.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Furface <furface(at)omnicode(dot)com> wrote:
>
> Thanks Tom. You know I thought about this approach a little more. I
> don't think there's a simple answer to this security problem short of
> placing a proxy server application between the clients and the
> database. The problem with giving database role accounts to each and
> every user is that the users now have uncontrolled access to the
> database.
Ummm ... huh?
PostgreSQL has a pretty nice security model that gives you a great deal
of control over what users have access to:
http://www.postgresql.org/docs/8.2/static/user-manag.html
The only thing that's missing is row-level granularity. There's at least
one project out there supporting that, and you can also simulate it with
clever usage of stored procedures and the ability to run them with the
permissions of the definer instead of the executer.
-Bill
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Brendan Jurd | 2007-01-28 18:24:37 | Re: Firing triggers based on certain Insert conditions |
| Previous Message | Tom Lane | 2007-01-28 18:20:16 | Re: Firing triggers based on certain Insert conditions |