| From: | Doug McNaught <doug(at)wireboard(dot)com> |
|---|---|
| To: | Dmitry Alyabyev <dimitry(at)al(dot)org(dot)ua> |
| Cc: | Stephan Szabo <sszabo(at)megazone23(dot)bigpanda(dot)com>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Permissions on non-owned database |
| Date: | 2002-01-23 17:13:06 |
| Message-ID: | m3d701c7od.fsf@varsoon.denali.to |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Dmitry Alyabyev <dimitry(at)al(dot)org(dot)ua> writes:
> Wednesday, January 23, 2002, 6:18:34 PM, Stephan Szabo wrote:
>
> > Right now there's no permissions for preventing creation in a database you
> > can connect to. If the user doesn't need to be able to connect to the
> > database in question, you can remove their access to it via your
> > pg_hba.conf file.
>
> How can I separate these users if they are connecting from one IP ?
> Using ident auth isn't secure enough, imho
If they're on a different host, and you're not willing to trust
ident, I think some kind of password auth is the only way to go.
-Doug
--
Let us cross over the river, and rest under the shade of the trees.
--T. J. Jackson, 1863
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Florian Wunderlich | 2002-01-23 17:26:23 | persistent portals/cursors (between transactions) |
| Previous Message | Doug McNaught | 2002-01-23 17:11:49 | Re: postgresql 7.2b5 and vserver: statistics sockets |