Quick Links

Postgres usage of session identifiers for security

From:	Keith Minsel <minselk(at)gmail(dot)com>
To:	pgsql-general(at)postgresql(dot)org
Subject:	Postgres usage of session identifiers for security
Date:	2014-01-14 12:36:31
Message-ID:	CA+O6uFBz6TCFetwb952oj0ZSNS5sduTFWLLzmEQicgx8f8PRaw@mail.gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Can anyone describe how Postgres generates session identifiers and how
Postgres uses a session identifier for community action protection?

More specifically, will Postgres allow a session identifier to be
non-system generated? How does Postgres respond when presented with a
non-system generated session identifier?

My security team is asking and I can't find any documentation on this.

Thanks,
Keith

Responses

Re: Postgres usage of session identifiers for security at 2014-01-14 14:14:22 from Marti Raudsepp

Browse pgsql-general by date

	From	Date	Subject
Next Message	jaime soler	2014-01-14 12:51:59	GSSAPI auth issue with windows 7 client, postgresql 9.2.3 linux server
Previous Message	Felix Kunde	2014-01-14 12:34:25	Audit database to recreate former states using JSON functions