Re: PostgreSQL Backup Script - Mailing list pgsql-php

From Christopher Browne
Subject Re: PostgreSQL Backup Script
Date
Msg-id m37jjn6qa7.fsf@knuth.cbbrowne.com
Whole thread Raw
In response to PostgreSQL Backup Script  ("Vishal Kashyap @ [SaiHertz]" <vishalonlist@gmail.com>)
List pgsql-php
vishalonlist@gmail.com ("Vishal Kashyap @ [SaiHertz]") wrote:
> I am stuck with database backup.
> While using pg_dump the utility asks for password but since I require
> this process to be automated the password prompt is giving me
> headaches
> is their any way by which can pass the password automatically.
> Like setting up a variable in php  which passes the password to the
> pg_dump utility on prompt this way the whole process of pg_dump would
> get automated.
> One obvious solution was to use .pgpass but it does not appeal me
> because it is again a security threat.
> any pointers or help may lead to unlocked secret.

You seem to be imagining that there can exist a way of storing some
form of a password in a fashion that allows automating these sorts of
things that _doesn't_ present an identical security threat to that
involved with .pgpass

It may take a bit of thinking about the problem to disabuse oneself of
such fantasies...
--
(reverse (concatenate 'string "gro.mca" "@" "enworbbc"))
http://linuxfinances.info/info/security.html
Rules of the Evil Overlord #125. "Should I actually decide to kill the
hero in  an elaborate escape-proof  deathtrap room (water  filling up,
sand pouring down, walls converging,  etc.) I will not leave him alone
five-to-ten  minutes  prior  to  "imminent" death,  but  will  instead
(finding a vantage point or  monitoring camera) stick around and enjoy
watching my adversary's demise." <http://www.eviloverlord.com/>

pgsql-php by date:

Previous
From: Eko Budi Setiyo
Date:
Subject: sql command
Next
From: Christopher Kings-Lynne
Date:
Subject: Re: sql command