| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | zferentz(at)gmail(dot)com |
| Cc: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: Postgres security issue - protecting datafiles |
| Date: | 2008-06-04 16:11:50 |
| Message-ID: | 25650.1212595910@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
zferentz(at)gmail(dot)com writes:
> I'd like to use postgres to store my secret data in a way that only
> me (the DBA, owner of the table) can access the talbe while the root
> (system administrator) who installed and maintains the server - will
> not be able to see the data.
If you think you can hide anything on a machine from its root admin,
I have a bridge I'd like to sell you ...
The only thing you could do along this line is to use the database as a
dumb container for encrypted data that you decrypt only on the client
side, using keys that are never sent to the database server.
Unfortunately that approach loses most of the benefit of using a
database in the first place, since you can hardly do any useful
processing on data that you can't decrypt.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Kevin Grittner | 2008-06-04 19:30:57 | tsearch2 dictionary for statute cites |
| Previous Message | Marcin Kasperski | 2008-06-04 16:09:48 | Re: Postgres security issue - protecting datafiles |