| From: | Andre Labuschagne <technical(at)eduadmin(dot)com> |
|---|---|
| To: | Alan Hodgson <ahodgson(at)lists(dot)simkin(dot)ca> |
| Cc: | pgsql-novice(at)postgresql(dot)org |
| Subject: | Re: Permissions |
| Date: | 2016-09-20 22:09:36 |
| Message-ID: | 2BC16340-8C52-42C7-91A2-802E80F77D8D@eduadmin.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-novice |
> On 20 Sep 2016, at 23:58, Alan Hodgson <ahodgson(at)lists(dot)simkin(dot)ca> wrote:
>
> On Tuesday 20 September 2016 23:47:53 Andre Labuschagne wrote:
>> Hi Skylar
>>
>> We are talking about thousands of installations within the organisation.
>> Ideally we need to allow the users at the installations to be able to
>> create their own databases and some of them we supply from head office.
>> The ones we supply applications will be using. When the on site
>> administrators use something like pgAdmin they must not be able to tamper
>> with the databases that we have supplied - no backing up or accessing and
>> so on. Both Sybase and Mimer allow this as explicit login and password is
>> required to each database, even if you are a super user.
>
> PostgreSQL will definitely not help you with that. I find it hard to believe
> any database will allow you to ship a copy to a local admin but will have it
> somehow not be readable by them, but good luck with the commercial products if
> they claim to be able to.
>
>
>
> --
> Sent via pgsql-novice mailing list (pgsql-novice(at)postgresql(dot)org)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgsql-novice
>
>
Hi Alan
We have experience with both products I mentioned and have had experience with them for the last twenty years or so [been in this game for 33 years now - from DOS1.0 and Unix and Zenix to Linux etc]. They do not claim and no luck is required. You better believe it. All permissions ship with the database. It works quite brilliantly as the only access to the databases shipped is through the apps that ship and no tool will allow tampering with the objects that have been explicitly granted to specific users by the owners of the objects. It works very well. We even provide live backup apps that they can run - an app does that as well. They can copy the backed up files but cannot access them with any tool without being asked for a login and password.
We were hoping we could achieve a similar thing with PG for a new project. We may have to stick with one of the other two.
Cheers
Andre
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David G. Johnston | 2016-09-20 23:09:57 | Re: Permissions |
| Previous Message | Alan Hodgson | 2016-09-20 21:58:23 | Re: Permissions |