| From: | Tino Schwarze <postgresql(at)tisc(dot)de> |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: Postgres security issue - protecting datafiles |
| Date: | 2008-06-04 16:03:16 |
| Message-ID: | 20080604160316.GH23526@easy2.in-chemnitz.de |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Mon, Jun 02, 2008 at 03:16:54PM -0700, zferentz(at)gmail(dot)com wrote:
> I'd like to use postgres to store my secret data in a way that only
> me (the DBA, owner of the table) can access the talbe while the root
> (system administrator) who installed and maintains the server - will
> not be able to see the data.
>
> Now, I think that "db authentication" is simply not enough , because
> the administrator can copy the data files to his own machine (where he
> is the owner of the database).
>
> Is there a way to protect the data files, so even the "malicious
> administrator" cannot see the data ?
I suppose, you need to look into SELinux. That might give you the
infrastructure for such purposes, together with an encrypted file
system for DB space.
That's not something you can do via an application. As you already
noticed, anybody with access to the physical table data will be able to
copy it. Of course, you could encrypt the data stored in the table, but
then: where's the key for decryption?
Tino.
--
"What we resist, persists." (Zen saying)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Marcin Kasperski | 2008-06-04 16:09:48 | Re: Postgres security issue - protecting datafiles |
| Previous Message | Jonah H. Harris | 2008-06-04 16:01:32 | Re: Postgres security issue - protecting datafiles |