Home > mailing lists

Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data. - Mailing list pgsql-general

From	John R Pierce
Subject	Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.
Date	November 18, 2015 23:23:35
Msg-id	564CDE49.8090905@hogranch.com Whole thread Raw
In response to	postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data. ("Day, David" <dday@redcom.com>)
List	pgsql-general

Tree view

On 11/18/2015 11:45 AM, Day, David wrote:
> I believe the   concern,  based on my current understanding  of
> postgres inner workings,  is  that when a dead tuple is reclaimed by
> vacuuming:  Is that reclaimed space initialized in some fashion that
> would  shred any sensitive data that was formerly there to any
>  inspection by  the subsequent owner of  that disk page ? ( zeroization )

the postgres server owns the pages.   AFAIK, the only way to read raw
pages is if you can impersonate the server and directly access the raw
files, or if you have postgres superuser privileges and use the
pg_read_binary_file() functions.     no 'normal' client app will be able
to see raw pages, or data thats not a valid part of a table that client
has permissions to read.

--
john r pierce, recycling bits in santa cruz

pgsql-general by date:

From: Tom Lane
Date: 18 November 2015, 23:22:57
Subject: Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.

From: Adrian Klaver
Date: 18 November 2015, 23:25:59
Subject: Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data.

Re: postgres zeroization of dead tuples ? i.e scrubbing dead tuples with sensitive data. - Mailing list pgsql-general

Previous

Next