| From: | Scott Marlowe <scott(dot)marlowe(at)gmail(dot)com> |
|---|---|
| To: | "Brian A(dot) Seklecki" <lavalamp(at)spiritual-machines(dot)org> |
| Cc: | pgsql-general <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: Disable databse listing for non-superuser (\l) ? |
| Date: | 2009-07-25 02:15:32 |
| Message-ID: | dcc563d10907241915w8376cb9i4cbb6ca15048e5a9@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Fri, Jul 24, 2009 at 5:02 PM, Brian A.
Seklecki<lavalamp(at)spiritual-machines(dot)org> wrote:
> All:
>
> Any suggestions on how-to, or comments on a potential NFR, to disable
> non-superuser's from viewing the database list via \l?
So, is this a misguided attempt at security through obscurity, or are
you looking at limiting the noise that users see when they look at
databases? If it's for security through obscurity, I don't have any
real advice, as any changes to do that in a manner that really limits
the ability of the user to look up that data are likely to have
unintended negative consequences.
OTOH, if you just want to limit what folks see to make their life
easier, then I'd suggest making the changes in psql and change the
queries it uses to look up the databases the user has access to.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Brian A. Seklecki | 2009-07-25 02:41:23 | Re: Disable databse listing for non-superuser (\l) ? |
| Previous Message | Andrew Radamis | 2009-07-25 00:56:38 | Re: FATAL: root page 3 of "pg_class_oid_index" has level 0, expected 1 |