Home > mailing lists

Re: BUG #18350: Modifying predefined roles' unlimited connections for VA STIG cybersecurity checklist - Mailing list pgsql-bugs

From	Andrew Dunstan
Subject	Re: BUG #18350: Modifying predefined roles' unlimited connections for VA STIG cybersecurity checklist
Date	February 19 04:02:50
Msg-id	09e60516-24cf-7d5a-a0b8-d64e1581994b@dunslane.net Whole thread Raw
In response to	Re: BUG #18350: Modifying predefined roles' unlimited connections for VA STIG cybersecurity checklist (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

On 2024-02-16 Fr 16:35, Tom Lane wrote:
> PG Bug reporting form <noreply@postgresql.org> writes:
>> We have identified an issue where predefined roles are not modifiable,
>> however a Dept. of VA security checklist requires that no roles have
>> unlimited connections. The Predefined roles have unlimited connections, is
>> there a way to modify these?
> Solution 1: explain to your compliance department that it's pointless
> to worry about the connection limit for a role that can't log in.
>
> Solution 2: do a manual UPDATE on pg_authid.  This would have to
> be done over after any major-version upgrade, though.
>
>             


Also note that this is not by any stretch of the imagination a bug.


cheers


andrew

--
Andrew Dunstan
EDB: https://www.enterprisedb.com

pgsql-bugs by date:

From: David Rowley
Date: 19 February, 02:49:11
Subject: Re: BUG #18344: Pruning tables partitioned by bool range fails with invalid strategy

From: Tender Wang
Date: 19 February, 11:21:11
Subject: Re: BUG #18344: Pruning tables partitioned by bool range fails with invalid strategy

Re: BUG #18350: Modifying predefined roles' unlimited connections for VA STIG cybersecurity checklist - Mailing list pgsql-bugs

Previous

Next