Re: Anonymized database dumps - Mailing list pgsql-general

From hari.fuchs@gmail.com
Subject Re: Anonymized database dumps
Date
Msg-id 87obrt7y5a.fsf@hf.protecting.net
Whole thread Raw
In response to Anonymized database dumps  (Janning Vygen <vygen@kicktipp.de>)
Responses Re: Anonymized database dumps  (Marko Kreen <markokr@gmail.com>)
List pgsql-general
Janning Vygen <vygen@kicktipp.de> writes:

> pgcrypto does not work for this scenario as far as i know.
>
> pgcrypto enables me to encrypt my data and let only a user with the
> right password (or key or whatever) decrypt it, right? So if i run it
> in a test environment without this password the application is broken.
>
> I still want to use these table columns in my test environment but
> instead of real email addresses i want addresses like
> random_number@example.org.
>
> You might be right that it is a good idea to additional encrypt this data.

Maybe you could change your application so that it doesn't access the
critical tables directly and instead define views for them which, based
on current_user, either do decryption or return randim strings.

pgsql-general by date:

Previous
From: Sergey Konoplev
Date:
Subject: Re: Multi server query
Next
From: John R Pierce
Date:
Subject: Re: Multi server query