| From: | Thom Brown <thom(at)linux(dot)com> |
|---|---|
| To: | Simon Riggs <simon(at)2ndquadrant(dot)com> |
| Cc: | Stephen Frost <sfrost(at)snowman(dot)net>, Damian Wolgast <damian(dot)wolgast(at)si-co(dot)net>, Heikki Linnakangas <hlinnakangas(at)vmware(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Column Redaction |
| Date: | 2014-10-10 13:05:05 |
| Message-ID: | CAA-aLv55bujC5mt2Go5Xz-Kc2O5HftT==UVXfHPzOMKnuvyUjg@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 10 October 2014 13:43, Simon Riggs <simon(at)2ndquadrant(dot)com> wrote:
> On 10 October 2014 11:45, Thom Brown <thom(at)linux(dot)com> wrote:
>
>> To be honest, this all sounds rather flaky.
>
> To be honest, suggesting anything at all is rather difficult and I
> recommend people try it.
I have, and most ideas I've had have been justifiably shot down or
picked apart (scheduled background tasks, offloading stats collection
to standby, index maintenance in DML query plans, expression
statistics... to name but a few).
> Everything sounds crap when you didn't think of it and you've given it
> an hour's thought.
I'm not sure that means my concerns aren't valid. I don't think it
sounds crap, but I also can't see any use-case for it where we don't
already have things covered, or where it's going to offer any useful
level of security. Like with RLS, it may be that I'm just looking at
things from the wrong perspective.
--
Thom
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Claudio Freire | 2014-10-10 13:18:48 | Re: Column Redaction |
| Previous Message | Robert Haas | 2014-10-10 12:58:35 | Re: Column Redaction |