| From: | Devrim GUNDUZ <devrim(at)commandprompt(dot)com> |
|---|---|
| To: | Q Beukes <pgsql-dev(at)list(dot)za(dot)net> |
| Cc: | "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: pg_hba.conf alternative |
| Date: | 2006-02-08 12:39:31 |
| Message-ID: | 1139402371.3937.45.camel@evim.gunduz.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Hi,
On Wed, 2006-02-08 at 14:34 +0200, Q Beukes wrote:
> I have the problem where the system administrators at our company
> obviously have access to the whole filesystem, and our database records
> needs to be hidden even from them.
As they have access to whole filesystem, they can access anything, even
if you enable password auth (they'd switch to trust auth and reload
postmaster).
They can also copy the data dir to another server and search the
You should either trust your sysadms, or work with people who you trust.
Regards,
--
The PostgreSQL Company - Command Prompt, Inc. 1.503.667.4564
PostgreSQL Replication, Consulting, Custom Development, 24x7 support
Managed Services, Shared and Dedicated Hosting
Co-Authors: plPHP, plPerlNG - http://www.commandprompt.com/
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Csaba Nagy | 2006-02-08 12:45:09 | Re: pg_hba.conf alternative |
| Previous Message | Q Beukes | 2006-02-08 12:34:29 | pg_hba.conf alternative |