Quick Links

Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL

From:	Scott Ribe <scott_ribe(at)elevated-dev(dot)com>
To:	David Ondrejik <david(dot)ondrejik(at)noaa(dot)gov>
Cc:	Khangelani Gama <kgama(at)argility(dot)com>, pgsql-admin(at)postgresql(dot)org
Subject:	Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL
Date:	2012-03-14 15:46:42
Message-ID:	EDD98FDF-AAC8-48A7-A6AE-C1EE365D2C0E@elevated-dev.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-admin

On Mar 14, 2012, at 9:28 AM, David Ondrejik wrote:

> So there is some trail to track back to the original user.

Yes, but once he has root shell, the trail ends there, and impersonation of anyone is once again trivial. Also, sudo su root, does work on some unices, and the option you don't want to advertise is, in my opinion, trivially obvious--but I'll respect the idea and not advertise it.

--
Scott Ribe
scott_ribe(at)elevated-dev(dot)com
http://www.elevated-dev.com/
(303) 722-0567 voice

In response to

Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL at 2012-03-14 15:28:35 from David Ondrejik

Responses

Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL at 2012-03-14 16:14:00 from David Ondrejik
Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL at 2012-03-15 04:33:45 from Khangelani Gama

Browse pgsql-admin by date

	From	Date	Subject
Next Message	David Ondrejik	2012-03-14 16:14:00	Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL
Previous Message	David Ondrejik	2012-03-14 15:28:35	Re: Update actions (with user name) inside PostgreSQL DB - any version on postgreSQL