Re: pgaudit - an auditing extension for PostgreSQL

From: Robert Haas <robertmhaas(at)gmail(dot)com>
To: Stephen Frost <sfrost(at)snowman(dot)net>
Cc: Abhijit Menon-Sen <ams(at)2ndquadrant(dot)com>, Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, Fujii Masao <masao(dot)fujii(at)gmail(dot)com>, Ian Barwick <ian(at)2ndquadrant(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>
Subject: Re: pgaudit - an auditing extension for PostgreSQL
Date: 2014-06-30 14:59:22
Message-ID: CA+Tgmob1y+fDYtXroE=AxuEhyT5BrDqRzwjzagxmCAedccdXiQ@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

On Mon, Jun 30, 2014 at 9:39 AM, Stephen Frost <sfrost(at)snowman(dot)net> wrote:
>> I think the fact that pgaudit does X and you think it should do Y is a
>> perfect example of why we're nowhere close to being ready to push
>> anything into core. We may very well want to do that someday, but not
>> yet.
>
> That's fine- but don't push something in which will make it difficult to
> add these capabilities later (and, to be clear, I'm not asking out of
> pipe dreams and wishes but rather after having very specific discussions
> with users and reviewing documents like NIST 800-53, which is publically
> available for anyone to peruse).

I don't think that's a valid objection. If we someday have auditing
in core, and if it subsumes what pgaudit does, then whatever
interfaces pgaudit implements can be replaced with wrappers around the
core functionality, just as we did for text search.

But personally, I think this patch deserves to be reviewed on its own
merits, and not the extent to which it satisfies your requirements, or
those of NIST 800-53. As I said before, I think auditing is a
complicated topic and there's no guarantee that one solution will be
right for everyone. As long as we keep those solutions out of core,
there's no reason that multiple solutions can't coexist; people can
pick the one that best meets their requirements. As soon as we start
talking about something putting into core, the bar is a lot higher,
because we're not going to put two auditing solutions into core, so if
we do put one in, it had better be the right thing for everybody. I
don't even think we should be considering that at this point; I think
the interesting (and under-discussed) question on this thread is
whether it even makes sense to put this into contrib. That means we
need some review of the patch for what it is, which there hasn't been
much of, yet.

--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Simon Riggs 2014-06-30 15:00:24 Re: Proposal for CSN based snapshots
Previous Message Stephen Frost 2014-06-30 14:31:22 Re: RLS Design