Re: Making the DB secure - Mailing list pgsql-general

From Karl O. Pinc
Subject Re: Making the DB secure
Date
Msg-id 1119046970l.17123l.1l@mofo
Whole thread Raw
In response to Making the DB secure  (Együd Csaba <csegyud@vnet.hu>)
Responses Re: Making the DB secure
List pgsql-general
On 06/17/2005 07:49:07 AM, Együd Csaba wrote:
> Hi,
> we plan to make available our database from the internet (direct
> tcp/ip
> based connections). We want to make it as secure as possible. There
> are a
> few users who could access the database, but we want to block any
> other
> users to access.

Disclamer: Yup, the other responders are right. You don't want to
make a mistake with security.

Rather than put your database on the net you'd be much better served
by using a VPN.  IPSEC and OpenVPN come to mind.  At the
very least use a ssh tunnel.

You want security, use a tool designed to give you security.

Karl <kop@meme.com>
Free Software:  "You don't pay back, you pay forward."
                  -- Robert A. Heinlein


pgsql-general by date:

Previous
From: "Karl O. Pinc"
Date:
Subject: Re: libpq.so.3 problem, PostgreSQL >= 8.0.2 and RPM
Next
From: Peter Fein
Date:
Subject: Re: Error column "sys" does not exist