Re: pg_hba.conf alternative - Mailing list pgsql-hackers

From Andrew Dunstan
Subject Re: pg_hba.conf alternative
Date
Msg-id 43EB851C.5010306@dunslane.net
Whole thread Raw
In response to Re: pg_hba.conf alternative  (korry <korry@starband.net>)
Responses Re: pg_hba.conf alternative
List pgsql-hackers
korry wrote:

>>>I was suggesting that pg_hba.conf could be stored in the same encrypting
>>>filesystem.
>>>      
>>>
>>Then how can it be changed? What if you need to allow access from, say,
>>another user or another network? Oh, the admins have to change it ...
>>    
>>
>
>Not all admins are equal... the admin that takes care of the database would 
>obviously have the decrypt password for the encrypting filesystem.  That 
>admin (but not other admins) can change the pg_hba.conf file.
>
>    
>  
>

Why would you not simply set this up on a seperate machine to which only 
the trusted admins had access? Most data centers I am familiar with use 
single purpose machines anyway. If someone is trusted as root on your 
box they can screw you no matter what you do. Pretending otherwise is 
just folly.

cheers

andrew





pgsql-hackers by date:

Previous
From: "Mark Woodward"
Date:
Subject: Re: PostgreSQL 8.0.6 crash
Next
From: Stephen Frost
Date:
Subject: Re: Upcoming re-releases