Quick Links

Re: .pgpass and root: a problem

From:	Scott Marlowe <scott(dot)marlowe(at)gmail(dot)com>
To:	sthomas(at)optionshouse(dot)com
Cc:	PostgreSQL General <pgsql-general(at)postgresql(dot)org>
Subject:	Re: .pgpass and root: a problem
Date:	2013-02-05 18:44:54
Message-ID:	CAOR=d=3B8G_zuRgaMUnW++P392UYa5Rp=2LHKtcLc_mVbKap5Q@mail.gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

On Tue, Feb 5, 2013 at 10:15 AM, Shaun Thomas <sthomas(at)optionshouse(dot)com> wrote:
> Hey folks,
>
> We're wanting to implement a more secure password policy, and so have
> considered switching to LDAP/Active Directory for passwords. Normally, this
> would be fine, but for two things:
>
> 1. Tons of our devs use .pgpass files to connect everywhere.
> 2. Several devs have root access to various environments.

Stop. If you want secure setups you don't hand out root access to
lots of people. Trying to then make it secure is like closing the
barn door after the horse has left.

In response to

.pgpass and root: a problem at 2013-02-05 17:15:32 from Shaun Thomas

Responses

Re: .pgpass and root: a problem at 2013-02-05 18:53:02 from Joshua D. Drake
Re: .pgpass and root: a problem at 2013-02-05 19:07:38 from Shaun Thomas

Browse pgsql-general by date

	From	Date	Subject
Next Message	Joshua D. Drake	2013-02-05 18:53:02	Re: .pgpass and root: a problem
Previous Message	Robert Klaus	2013-02-05 18:35:22	Re: cleanup of pgsql_tmp directory