| From: | Joel Burton <jburton(at)scw(dot)org> |
|---|---|
| To: | pgsql(at)itsbruce(dot)uklinux(dot)net |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Security and performance |
| Date: | 2001-05-02 21:59:37 |
| Message-ID: | Pine.LNX.4.21.0105021758360.21206-100000@olympus.scw.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Wed, 2 May 2001 pgsql(at)itsbruce(dot)uklinux(dot)net wrote:
> I'm writing the database backend to a web application. Being paranoid I
> want to limit the damage/exposure that the application can do.
>
> One way would be to create a database user for each application user
> (i.e. login name) and to create views for each user, not giving them any
> permissions on sensitive tables but only letting them see their own data
> through the views. How would that affect the database as the number of
> users climbs through the hundreds to the thousands? Would the thousands
> of views slow the database down? Is there an upper limit to the number
> of views?
Instead of making a kajillion views, could you use a RULE that
checks their identity against some field, and either does the right thing
or does nothing, depending on this info?
It would seem *MUCH* easier to maintain.
--
Joel Burton <jburton(at)scw(dot)org>
Director of Information Systems, Support Center of Washington
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andy Koch | 2001-05-02 22:08:09 | Re: DROP TABLE wildcard |
| Previous Message | Joel Burton | 2001-05-02 21:57:34 | Re: update ... from where id in (..) question |