Re: How to get SE-PostgreSQL acceptable
| От | Stephen Frost |
|---|---|
| Тема | Re: How to get SE-PostgreSQL acceptable |
| Дата | |
| Msg-id | 20090130231304.GF8123@tamriel.snowman.net обсуждение исходный текст |
| Ответ на | Re: How to get SE-PostgreSQL acceptable (Andrew Dunstan <andrew@dunslane.net>) |
| Список | pgsql-hackers |
* Andrew Dunstan (andrew@dunslane.net) wrote: > Josh Berkus wrote: >> So, for 8.4: *if* we included in 8.4 a version of SEPostgres with all >> features *except* row-level security, would it still be useful to the >> SELinux community? >> >> I think we're just not going to work out the headache-inducing issues >> around row-level security in time for 8.4, and it seems to me that >> integrated system-level security labels at the table-and-column level >> are still very useful, even without row-level security. I tend to agree that they will be very useful. I'm not sure there will be much adoption without row-level in the security community though, to be honest. I'd like to see it as part of an overall plan to eventually do row-level support. Given the size of this overall work and feature set, I think it's appropriate to do it in a staged manner regardless. > Hasn't a plan for this already been posted? See > http://archives.postgresql.org/pgsql-hackers/2009-01/msg02407.php Sure, that's a plan, but Josh's question is certainly appropriate. Thanks, Stephen
В списке pgsql-hackers по дате отправления: