| From: | Douglas McNaught <doug(at)mcnaught(dot)org> |
|---|---|
| To: | Együd Csaba <csegyud(at)vnet(dot)hu> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Making the DB secure |
| Date: | 2005-06-17 14:19:51 |
| Message-ID: | m264wdvzeg.fsf@Douglas-McNaughts-Powerbook.local |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Együd Csaba <csegyud(at)vnet(dot)hu> writes:
> Hi,
> we plan to make available our database from the internet (direct tcp/ip
> based connections). We want to make it as secure as possible. There are a
> few users who could access the database, but we want to block any other
> users to access.
Honestly, I wouldn't do it this way unless I had no alternative. I'd
build a middle-tier application layer that takes requests from the
clients (via raw sockets, XML-RPC or whatever) and then translates
those calls into SQL queries. It just gives you a lot more control
over what queries hit your system.
-Doug
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2005-06-17 14:20:16 | Re: query plan in pg7.4 vs 8.0.3 |
| Previous Message | Kathir Velu | 2005-06-17 14:04:41 | PostgreSQL 8.0.3 : initdb fails with the time zone value WAT0 on HP-Unix platforms |