| From: | "Karl O(dot) Pinc" <kop(at)meme(dot)com> |
|---|---|
| To: | Ron Peterson <rpeterso(at)mtholyoke(dot)edu> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: security |
| Date: | 2005-02-06 04:30:49 |
| Message-ID: | 1107664249l.23980l.3l@mofo |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On 02/05/2005 08:08:00 PM, Ron Peterson wrote:
> I would like to be able to assert that the security of data stored as
> a
> value in a PostgreSQL table can be as high as the security of saving
> that same piece of data to a file on disk. Would that be correct?
Well, from a theoretical perspective you're adding additional levels
of complexity when you use PostgreSQL. The postgres databases are
in the filesystem, so you don't eliminate complexity there, and
you've added the complexity of a database and a network into the
mix. With more complexity there's more to go wrong. I guess the
question is whether the additional complexity buys you additional
security that makes up the difference.
I'd say the answer depends on how badly you need the additional
security.
Otherwise, Idunno.
Karl <kop(at)meme(dot)com>
Free Software: "You don't pay back, you pay forward."
-- Robert A. Heinlein
| From | Date | Subject | |
|---|---|---|---|
| Next Message | John DeSoi | 2005-02-06 04:57:45 | Re: Referencing uninitialized variables in plpgsql |
| Previous Message | Karl O. Pinc | 2005-02-06 04:20:51 | Referencing uninitialized variables in plpgsql |