On 12/20/2015 09:16 AM, oleg yusim wrote:
Greetings!
I'm new to PostgreSQL, working on it from the point of view of Cyber Security
assessment. In regards to the here is my questions:
From the security standpoint we have to assure that database invalidates
session identifiers upon user logout or other session termination (timeout
counts too).
Does PostgreSQL perform this type of actions? If so, where are those Session
IDs are stored, so I can verify it?
Thanks,
Oleg
Are you talking about a website session? Does this website session happen to
be stored in PG?
-Andy
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
