At 2014-07-01 21:39:27 +0900, maumau307@gmail.com wrote:
>
> Won't it be burden and a headache to maintain pgaudit code when it
> becomes obsolete in the near future?
Maybe it's a bit unfair to single out this statement to respond to,
because it seems at best tangential to your larger point, but:
If it were to really become obsolete (not sure about "the near future"),
it wouldn't need much maintenance. It already works about as well as it
ever will on older releases (e.g., we have no hopes of ever backporting
enough of event triggers to provide DDL deparsing in 9.3).
> I'm afraid they would be disappointed if PostgreSQL provides auditing
> functionality which does not conform to any real regulations like PCI
> DSS, NIST
I foresee lots of disappointment, then. I don't think even Stephen is
advocating NIST-compliance as the *baseline* for serious auditing in
core, just that we need a design that lets us get there sometime.
-- Abhijit
