| From: | Josh Berkus <josh(at)agliodbs(dot)com> |
|---|---|
| To: | "Jillian Carroll" <jillian(at)koskie(dot)com>, <pgsql-novice(at)postgresql(dot)org> |
| Subject: | Re: Database Ownership |
| Date: | 2002-05-29 23:03:28 |
| Message-ID: | 200205291603.28739.josh@agliodbs.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general pgsql-novice |
Jillian,
> Is there any reason to have databases -not- owned by the users: Postgres or
> root?
Yes. If you have a multi-user database, you will want to restrict what the
users can change. In that case, the user has to be different from the
database owner, as the DB owner can change permissions.
Also, if your database is going to back up a web site, it's a good idea for
the web server to be a user with restricted permissions in case the site gets
hacked.
-Josh Berkus
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Dorward Villaruz | 2002-05-29 23:39:15 | binary files |
| Previous Message | Tom Lane | 2002-05-29 22:35:22 | Re: horrendous query challenge :-) |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Josh Berkus | 2002-05-29 23:12:17 | Re: Database Ownership |
| Previous Message | Jillian Carroll | 2002-05-29 22:23:59 | Database Ownership |