| From: | Mike Withers <M(dot)withers(at)uws(dot)edu(dot)au> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Database Permissions |
| Date: | 2001-08-24 01:12:47 |
| Message-ID: | 3.0.32.20010824111245.01c357d0@sovereign.macarthur.uws.edu.au |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
My apologies if the answer(s) to my questions are obvious to others. I'm
still quite new to Linux and PostgreSQL.
I have set up a database to be used by hundreds of students. Within psql I
set GRANT SELECT ON database TO PUBLIC on the database but have found that
if I login as one of those students I can login as the database owner by
using
\connect database owner
I then used:
ALTER USER owner WITH PASSWORD 'password';
the database confirmed a change had been made. I had hoped that by
explicitly putting a password in for the owner that if I used the \connect
.... then I would be required to put a password in to connect as owner.
Unfortunately not.
Any suggestions as to how I might secure the database to SELECTS only.
Curerently I have not invoked password authentication on the database
itself. I'm currently using the default settings on pg_hba.conf and I'm
wondering if the problem can be handled by altering this?
Thanks in anticipation
Mike Withers
University of Western Sydney, Australia
| From | Date | Subject | |
|---|---|---|---|
| Next Message | John Clark Naldoza y Lopez | 2001-08-24 01:21:43 | Re: Database Permissions |
| Previous Message | Sanjay Pandey | 2001-08-24 01:12:27 | Query |