| From: | KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com> |
|---|---|
| To: | Josh Berkus <josh(at)agliodbs(dot)com> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: [0/4] Proposal of SE-PostgreSQL patches |
| Date: | 2008-03-18 01:14:35 |
| Message-ID: | 47DF177B.8040405@ak.jp.nec.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
Josh Berkus wrote:
> KaiGai,
>
>> The series of patches are the proposal of Security-Enhanced PostgreSQL
>> (SE-PostgreSQL) for the upstreamed PostgreSQL 8.4 development cycle.
>
> Since I'm (Finally!) expecting the TrustedSolaris folks to put some work into
> PostgreSQL as well this year, I'm going to ask them to look over PGACE to see
> if this implementation is (still) generic enough to support TS as well. If
> it is, then it's probably generic enough to be a general building block.
We can extend PGACE framework to mount TrustedSolaris features.
If they need new hooks which is not used in SE-PostgreSQL, it can
remain the default behavior.
The default PGACE behavior gives us no effects in access controls.
A flexible framework is worthwhile for both operating systems.
Please confirm it to the TS folks.
Thanks,
--
OSS Platform Development Division, NEC
KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | KaiGai Kohei | 2008-03-18 01:41:42 | Re: [PATCHES] [0/4] Proposal of SE-PostgreSQL patches |
| Previous Message | Tatsuo Ishii | 2008-03-18 01:10:06 | Re: Proposal: new large object API |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | KaiGai Kohei | 2008-03-18 01:41:42 | Re: [PATCHES] [0/4] Proposal of SE-PostgreSQL patches |
| Previous Message | Tatsuo Ishii | 2008-03-18 01:10:06 | Re: Proposal: new large object API |