Home > mailing lists

Re: access and security - Mailing list pgsql-general

From	A. Kretschmer
Subject	Re: access and security
Date	October 30, 2006 11:52:50
Msg-id	20061030125241.GC7666@a-kretschmer.de Whole thread Raw
In response to	access and security (Andrew Kelly <akelly@corisweb.org>)
List	pgsql-general

Tree view

am  Mon, dem 30.10.2006, um 13:34:34 +0100 mailte Andrew Kelly folgendes:
> Hi all,
>
> please forgive a (likely) less than clever question.
>
> Are the barriers provided by pg_hba.conf enough from a security
> standpoint, or is it best to put up some iptable rules duplicating the
> restrictions?

Of cource, you can define rules for iptables to prevent access to your
database. But consider, this rules obtain for the entire
database-cluster. With pg_hba.conf you can define different permissions
for different databases.

If you need this, than you can't use iptables for this.


Andreas
--
Andreas Kretschmer
Kontakt:  Heynitz: 035242/47215,   D1: 0160/7141639 (mehr: -> Header)
GnuPG-ID:   0x3FFF606C, privat 0x7F4584DA   http://wwwkeys.de.pgp.net

pgsql-general by date:

From: "Leif B. Kristensen"
Date: 30 October 2006, 11:47:54
Subject: Re: Wordpress & PostgreSQL ...

From: Richard Broersma Jr
Date: 30 October 2006, 11:55:10
Subject: Re: postgresql books and convertion utilities

Re: access and security - Mailing list pgsql-general

Previous

Next