Home > mailing lists

Re: MySQL interview, no mention of PostgreSQL - Mailing list pgsql-advocacy

From	Josh Berkus
Subject	Re: MySQL interview, no mention of PostgreSQL
Date	October 16, 2003 16:55:35
Msg-id	200310160954.56483.josh@agliodbs.com Whole thread Raw
In response to	Re: MySQL interview, no mention of PostgreSQL ("Arcadius A." <ahouans@sh.cvut.cz_!!!NOSPAM!!!>)
Responses	Re: MySQL interview, no mention of PostgreSQL Re: MySQL interview, no mention of PostgreSQL
List	pgsql-advocacy

Tree view

Arcadius,

> Once, I've asked about the pg_hb.conf file ....
> IMHO, writing an app for parsing/editing that file *may* be a problem
> for those who develop control panels used by web hosting companies ....
>
> IMHO, moving the info in pg_hb.conf into the DB itself may attract
> control panel developers.

While one could write  a utility in Postgres to create/process the file, the
"live" version of pg_hba.conf *must* be outside the database.   If our ACL
was in the database, then how would we know who has the rights to read the
ACL?  Systems which store their ACLs in the database (MSSQL) are continuously
vulnerable to attacks that piggy-back on the authentication process to gain
entry to the database, e.g. the "Slammer" worm.

Also, users would risk a permanent fatal lockout if they mis-configure pg_hba.

--
Josh Berkus
Aglio Database Solutions
San Francisco

pgsql-advocacy by date:

From: "Arcadius A."
Date: 16 October 2003, 16:12:20
Subject: Re: MySQL interview, no mention of PostgreSQL

From: Josh Berkus
Date: 16 October 2003, 18:34:07
Subject: Re: first version of the PostgreSQL flyer

Re: MySQL interview, no mention of PostgreSQL - Mailing list pgsql-advocacy

Previous

Next