| From: | "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com> |
|---|---|
| To: | "Wetmore, Matthew (CTR)" <Matthew(dot)Wetmore(at)evernorth(dot)com> |
| Cc: | pgsql-admin(at)lists(dot)postgresql(dot)org |
| Subject: | Re: Guidance on user deletion |
| Date: | 2024-05-10 19:01:55 |
| Message-ID: | CAKFQuwaD09pSsUuuxt74UnS_a4hZozqC4JRAEf1Y-mAYY4n+fg@mail.gmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Fri, May 10, 2024, 11:37 Wetmore, Matthew (CTR) <
Matthew(dot)Wetmore(at)evernorth(dot)com> wrote:
> Corporate env.
>
>
>
> I’ve searched for an official BestPractice on user deletion (leave
> company), but can’t find anything that is official-ish.
>
>
>
> Two options:
>
>
>
> 1. Change user psswd to nonsense, then expire account.
> 2. DROP user.
>
>
>
> There are +/- to both.
>
>
>
> I prefer #1, as it gives the exact timestamp of expire (protects company
> and ex-employee), but corporate auditors disagree.
>
>
>
> What do you do? Any official guidance on this?
>
>
>
Use proper off-machine audit logs to make the auditors happy then drop
stuff no longer has relevance.
David J.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Keith Fiske | 2024-05-10 19:20:52 | Re: Adding future partition causes deadlock??? |
| Previous Message | Wells Oliver | 2024-05-10 18:40:37 | Re: Request for featu VACUUM FULL updates pg_stat_all_tables.last_vacuum |