Re: Very simple password for DB administrator

From: Achilleas Mantzios <achill(at)matrix(dot)gatewaynet(dot)com>
To: pgsql-admin(at)postgresql(dot)org
Cc: N K <tiktak(dot)hodiki(at)gmail(dot)com>
Subject: Re: Very simple password for DB administrator
Date: 2010-01-12 08:43:34
Message-ID: 201001121043.34466.achill@matrix.gatewaynet.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-admin

Στις Tuesday 12 January 2010 10:33:56 ο/η N K έγραψε:
> By default, all connections to DB are restricted by only local ones. I use
> the only superuser with non-standard name and very simple password - "one"
> or "two", for example. Connection to DB is established over SSH. Is it safe
> such technique?
>

Why do you want a simple password? How about protection against your local (Unix) users?
They could:
SELECT * from pg_user ;
and then try a dictionary attack on the password.

--
Achilleas Mantzios

In response to

Browse pgsql-admin by date

  From Date Subject
Next Message J. Hondius 2010-01-12 10:47:21 Oops! Disaster recovery
Previous Message N K 2010-01-12 08:33:56 Very simple password for DB administrator