--- Denis Pugnere <[EMAIL PROTECTED]> wrote:
>
> PG 7.0.2, RH Linux 6.2
>
> I'm trying to secure access to pgsql databases.
> the politic I use is to only allow access databases
> with passwords.
>
> for this, I use in pg_hba.conf :
> local all password
> host all 127.0.0.1 255.255.255.255 password
> Why this access is allowed ?
You can modify pg_hba.conf in order to allow or deny
access to some users to the definite DBs using
external password file ( read the manual for details).
I think that this method is clumsy, but there is no
other way to do this in PostgreSQL and i think this
should be completely redone.There is another problem:
unfortunately you can't deny cteating of tables in the
allowed DBs (This will be fixed in 7.1 according to
TODO list).
regards,
Rumen
__________________________________________________
Do You Yahoo!?
Get Yahoo! Mail – Free email you can access from anywhere!
http://mail.yahoo.com/
