From: | Vinicius Santos <vinicius(dot)santos(dot)lista(at)gmail(dot)com> |
---|---|
To: | pgadmin-hackers <pgadmin-hackers(at)postgresql(dot)org> |
Subject: | Fwd: Autosave in the SQL Editor |
Date: | 2012-08-07 11:56:48 |
Message-ID: | CAOTD_5Fc9iRX6CSw6j4S=DyKtOwdVkRjZ7-CW9a4-U-3tC=Otg@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgadmin-hackers |
> > MySQL Workbench has a similar feature.
> >
> > This does pose an exposure to save sensitive information without the user
> > knowing. How to solve this? A complicated development path: encrypt
> saved
> > document.
>
> We won't go that road for sure. Too complicated, too easy to make it
> worse.
>
I thought of something simpler.
In plain text.
>
> > Of course any of the files the user saves should be privileged
> > to that user (not group). So another method may be just to make sure the
> > file's privileges are for the user only.
>
> This is the minimum we can do.
>
If the file is plain text, anyone can look through the file system.
What we can do is save the user that has lost the query.
So, just to recover the lost files of the current user.
From | Date | Subject | |
---|---|---|---|
Next Message | Timon | 2012-08-07 15:03:55 | Russian translation |
Previous Message | Vinicius Santos | 2012-08-07 11:44:54 | Re: Autosave in the SQL Editor |