Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: Feature request: permissions change history for auditing
- From: Glyn Astill <glynastill(at)yahoo(dot)co(dot)uk>
- To: pgsql-hackers(at)postgresql(dot)org, Thom Brown <thombrown(at)gmail(dot)com>
- Subject: Re: Feature request: permissions change history for auditing
- Date: Mon, 30 Nov 2009 12:38:58 +0000 (GMT)
- Message-id: <114000.9747.qm@web23605.mail.ird.yahoo.com> <text/plain>
--- On Mon, 30/11/09, Thom Brown <thombrown(at)gmail(dot)com> wrote: > As far as I am aware, there is no way to tell when a > user/role was granted permissions or had permissions > revoked, or who made these changes. I'm wondering if > it would be useful for security auditing to maintain a > history of permissions changes only accessible to > superusers? I'd have thought you could keep track of this in the logs by setting log_statement >= ddl ? I'm pretty sure this is a feature that's not wanted, but the ability to add triggers to these sorts of events would surely make more sense than a specific auditing capability.
- Follow-Ups:
- Re: Feature request: permissions change history for auditing
- From: Thom Brown
- Re: Feature request: permissions change history for auditing
- References:
- Feature request: permissions change history for auditing
- From: Thom Brown
- Feature request: permissions change history for auditing
- Prev by Date: Feature request: permissions change history for auditing
- Next by Date: Re: Listen / Notify - what to do when the queue is full
- Previous by thread: Feature request: permissions change history for auditing
- Next by thread: Re: Feature request: permissions change history for auditing
- Indexes: