Re: How to deny user changing his own password?
| От | Jan Wieck |
|---|---|
| Тема | Re: How to deny user changing his own password? |
| Дата | |
| Msg-id | 3ED638F6.5060301@Yahoo.com обсуждение исходный текст |
| Ответ на | Re: How to deny user changing his own password? ("Trewern, Ben" <Ben.Trewern@mowlem.com>) |
| Список | pgsql-general |
Trewern, Ben wrote: > Now I think about this it would be useful: I have an Access database > which connects to postgres and the password is saved in the access > frontend. If someone (not sure how!) runs ALTER USER ..... WITH > PASSWORD '....'; via the frontend they could disrupt the connection to > the postgres backend. I'm sure a similar situation could happen with > PHP or similar as you often don't use the postgres security features to > secure your application. This is the second worst possible reason I can imagine for a feature like this. Passwords coded into the frontend ... gosh! Jan -- #======================================================================# # It's easier to get forgiveness for being wrong than for being right. # # Let's break this rule - forgive me. # #================================================== JanWieck@Yahoo.com #
В списке pgsql-general по дате отправления: