Home > mailing lists

Re: New types for transparent encryption - Mailing list pgsql-hackers

From	Greg Stark
Subject	Re: New types for transparent encryption
Date	July 7, 2009 09:25:12
Msg-id	407d949e0907070223m141149d5if8a432b81d2f83ad@mail.gmail.com Whole thread Raw
In response to	Re: New types for transparent encryption (Heikki Linnakangas <heikki.linnakangas@enterprisedb.com>)
Responses	Re: New types for transparent encryption
List	pgsql-hackers

Tree view

On Tue, Jul 7, 2009 at 10:09 AM, Heikki
Linnakangas<heikki.linnakangas@enterprisedb.com> wrote:
>
> What kind of attacks would this protect against? Seems a bit pointless
> to me if the password is being sent to the server anyway. If the
> attacker has superuser access to the server, he can harvest the
> passwords as the clients send them in. If he doesn't, the usual access
> controls with GRANT/REVOKE would be enough.

It would still protect against offline attacks such as against backup files.

-- 
greg
http://mit.edu/~gsstark/resume.pdf

pgsql-hackers by date:

From: Heikki Linnakangas
Date: 07 July 2009, 09:10:06
Subject: Re: New types for transparent encryption

From: Kedar Potdar
Date: 07 July 2009, 09:27:06
Subject: Re: Patch for automating partitions in PostgreSQL 8.4 Beta 2

Re: New types for transparent encryption - Mailing list pgsql-hackers

Previous

Next