Re: users and passwords problem

--- Denis Pugnere <Denis.Pugnere@igh.cnrs.fr> wrote:
>
> PG 7.0.2, RH Linux 6.2
>
> I'm trying to secure access to pgsql databases.
> the politic I use is to only allow access databases
> with passwords.
>
> for this, I use in pg_hba.conf :
> local    all                     password
> host    all    127.0.0.1   255.255.255.255 password

> Why this access is allowed ?

You can modify pg_hba.conf in order to allow or deny
access to some users to the definite DBs using
external password file ( read the manual for details).
I think that this method is clumsy, but there is no
other way to do this in PostgreSQL and i think this
should be completely redone.There is another problem:
unfortunately you can't deny cteating of tables in the
allowed DBs (This will be fixed in 7.1 according to
TODO list).

regards,
Rumen

__________________________________________________
Do You Yahoo!?
Get Yahoo! Mail � Free email you can access from anywhere!
http://mail.yahoo.com/