Home > mailing lists

Re: [v9.1] Add security hook on initialization of instance - Mailing list pgsql-hackers

From	Stephen Frost
Subject	Re: [v9.1] Add security hook on initialization of instance
Date	July 8, 2010 14:58:19
Msg-id	20100708145809.GQ21875@tamriel.snowman.net Whole thread Raw
In response to	Re: [v9.1] Add security hook on initialization of instance (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: [v9.1] Add security hook on initialization of instance Re: [v9.1] Add security hook on initialization of instance
List	pgsql-hackers

Tree view

* Robert Haas (robertmhaas@gmail.com) wrote:
> I'm not sure what the best thing to do about this is.  I think it
> might be a good idea to start with some discussion of what problems
> people are trying to solve (hopefully N > 1?) and then try to figure
> out what a good solution might look like.

Guess my first thought was that you'd have a database-level label that
would be used by SELinux to validate a connection.  A second thought is
labels for roles.  KaiGai, can you provide your thoughts on this
discussion/approach/problems?  I realize it's come a bit far-afield from
your original proposal.
Thanks,
    Stephen

pgsql-hackers by date:

From: Robert Haas
Date: 08 July 2010, 14:55:09
Subject: Re: [v9.1] Add security hook on initialization of instance

From: "Kevin Grittner"
Date: 08 July 2010, 15:37:18
Subject: Re: [RRR] Reviewfest 2010-06 Plans and Call for Reviewers

Re: [v9.1] Add security hook on initialization of instance - Mailing list pgsql-hackers

Previous

Next