| From: | juanmime(at)ono(dot)com |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: How to deny remote backups ? |
| Date: | 2005-03-04 16:33:02 |
| Message-ID: | 4208B84C0001250D@resmta04.ono.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
>>>>
>>>> The user DB that connects to the remote DB has insert and delete permissions
>>>> (he is the owner of the DB).
>>>>
>>>> The question is ... how can I block or forbide the remote DB duplication
>>>> ?. I think that a remote person that knows the user DB and his password,
>>>> can connect to the DB and make a pg_dump of the DB.
>> Only by not letting the user SELECT the data. If they can see it, they
can
>> copy it. If the users really only need INSERT and DELETE access, you can
do
>> this.
OK. but I think that an aproximation to the solution or a half solution could
be deny the user consulting the system database catalog or (pg_tables). In
that case, the user is not able to know the name of the tables inside the
db, and therefore he does not know which are the tables to dump. I think
also, that pg_dump could fail at this scenario.
1. What do you think about this ?
2. Is it possible (deny the access to the system catalog or tables (like
pg_tables) to a certain user ?
Thank you very much.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Michael Fuhr | 2005-03-04 17:00:57 | Re: How to deny remote backups ? |
| Previous Message | Bruno Wolff III | 2005-03-04 14:56:00 | Re: How to deny remote backups ? |