Skip site navigation (1) Skip section navigation (2)

Re: Securing stored procedures and triggers

From: mgould <mgould(at)allcoast(dot)net>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: Securing stored procedures and triggers
Date: 2007-10-31 21:18:58
Message-ID: (view raw, whole thread or download thread mbox)
Lists: pgsql-general
Thanks all.  In the open source community there seems to be more talent to "hack" than in other environments.  Once I told ASA to set the "hidden" attribute, I've not had any problems with this, at least that I've heard of. I was hoping that I'd be able to keep others out of the database totally but I can't host these applications for all of my customers.

Best Regards,

Michael Gould
All Coast Intermodal Services, Inc.

  From: Reg Me Please [mailto:regmeplease(at)gmail(dot)com]
To: pgsql-general(at)postgresql(dot)org
Sent: Wed, 31 Oct 2007 14:26:51 -0400
Subject: Re: [GENERAL] Securing stored procedures and triggers

There's not bulletproof way, in my opinion.

If they copy the whole DB structure *and* the object binaries they'll
have the very same functionalities!

Il Wednesday 31 October 2007 16:13:23 Douglas McNaught ha scritto:
> mgould <mgould(at)allcoast(dot)net> writes:
> > We are currently migrating from Sybase's ASA 9/10 to PostGres 8.2.4.
> > One of the features that is really nice in ASA is the ability to add
> > the attribute hidden to a Create procedure, Create function and
> > Create trigger. Essentially what this does is encrypt the code so
> > that if anyone or any utility gets into the database they cannot see
> > any of the actual code. This is a great feature for protecting
> > intellectual processing techniques. I don't know if there is anyway
> > to do this in PostGres. Before the hidden feature was added, we had
> > a competitor steal some of our stored procedure processing code. Is
> > there anyway to protect this from happening in PostGres?
> The only bulletproof way to do this currently is to write all your
> stored functions in C and load them as a shared library.
> -Doug
> ---------------------------(end of broadcast)---------------------------
> TIP 1: if posting/reading through Usenet, please send an appropriate
> subscribe-nomail command to majordomo(at)postgresql(dot)org so that your
> message can get through to the mailing list cleanly

Reg me Please

---------------------------(end of broadcast)---------------------------
TIP 2: Don't 'kill -9' the postmaster


pgsql-general by date

Next:From: Joshua D. DrakeDate: 2007-10-31 21:41:10
Subject: PostgreSQL Conference Fall 2007 wrap up
Previous:From: Gauthier, DaveDate: 2007-10-31 21:14:02
Subject: how can I shut off "more"?

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group