Re: hacker help: PHP-4.2.3 patch to allow restriction of
| От | Larry Rosenman |
|---|---|
| Тема | Re: hacker help: PHP-4.2.3 patch to allow restriction of |
| Дата | |
| Msg-id | 1033123767.375.8.camel@lerlaptop.lerctr.org обсуждение исходный текст |
| Ответ на | Re: hacker help: PHP-4.2.3 patch to allow restriction of database access (Tom Lane <tgl@sss.pgh.pa.us>) |
| Список | pgsql-hackers |
On Thu, 2002-09-26 at 22:42, Tom Lane wrote: > Jim Mercer <jim@reptiles.org> writes: > > as best i can understand, there is no way to get apach/php/pgsql configured > > (using "PostgreSQL's native access mappings") that would disallow php code > > in one virtual host from connecting to any database on the system. > > Betraying my ignorance of PHP here: what does a server supporting > multiple virtual hosts look like from the database's end? Can we > tell the difference at all between connections initiated on behalf > of one virtual host from those initiated on behalf of another? Nope, you can't to the best of my knowledge. You just get a standard connect string. (Assuming NAME based vHosts here, which is what most should be, modulo SSL based ones). [snip] -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 972-414-9812 E-Mail: ler@lerctr.org US Mail: 1905 Steamboat Springs Drive, Garland, TX 75044-6749
В списке pgsql-hackers по дате отправления: