| From: | Magnus Hagander <magnus(at)hagander(dot)net> |
|---|---|
| To: | guillermoariast(at)linuxwaves(dot)com |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: PGPASS.CONF ¿is there a way to p |
| Date: | 2007-01-09 21:30:53 |
| Message-ID: | 45A4098D.3060602@hagander.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
guillermo arias wrote:
> Hello, i am using PostgreSQL 8.2 in a Windows XP pc. I know that this
> file PGPASS.CONF stores the users with password, but because this is a
> plain txt file, it is easy for "curious" people to read the contents.
> By other way, if i do not write the password there, my users will have
> to write it when trying to connect to the PostgreSQL, and it is not
> desirable when i have an application in Windows.
> I have to say that my WinXP pc has the C: partition with FAT32, and the
> J: partition is NTFS. The PostgreSQL engine and database are installed in J:
>
> My question is ¿how can i protect PGPASS.CONF? or if you have another
> idea for protecting the passwords i will be very thankfull to read it.
Use NTFS file permissions. If your XP is installed on C:, and you have
FAT32 on C:, you basically have zero security on your system anyway, so
there is not much point in protecting this one file - it'd be trivial to
get that and other data anyway.
Now, if XP is installed on != C:, you can redirect the user profile
directories to the NTFS drive and protect those (check google for help
on how) - but it really makes no sense if XP is on a FAT32 drive. If so,
your only real solution is to convert to NTFS and make sure you get the
proper security set on the files.
//Magnus
| From | Date | Subject | |
|---|---|---|---|
| Next Message | af300wsm | 2007-01-09 21:44:32 | How does one perform a case-insenstive query on test or char fields |
| Previous Message | Tom Lane | 2007-01-09 21:24:05 | Re: ERROR: invalid memory alloc request size, and others |