Re: How to allow users to log on only from my application not from pgadmin
| От | Mark Walker |
|---|---|
| Тема | Re: How to allow users to log on only from my application not from pgadmin |
| Дата | |
| Msg-id | 45C15657.4060308@omnicode.com обсуждение исходный текст |
| Ответ на | Re: How to allow users to log on only from my application not from pgadmin (Mark Walker <furface@omnicode.com>) |
| Список | pgsql-general |
Oops, making a fool of myself again. I don't think this is possible. Code signing authentication works by comparing an application to a digital signature that can't be generated without a password. Since the server doesn't have a copy of the application or signature, it won't work. Oh well, it sounded good. Mark Walker wrote: > But you don't have to turn it on by default for any particular > database, and you could sign any application you want for your > individual server. > > > Paul Lambert wrote: >> Mark Walker wrote: >>> One other thing. Another approach to this problem would be to have >>> some sort of code signing/authentication capabilities for the >>> postgresql server. For instance, you login as an administrator >>> (some sort of enhanced privs), you get to look at the databases you >>> have permission for. Otherwise, postgresql has to recognize the >>> application. Has this ever been discussed? >>> >>> >>> >> >> I don't think it would be feasible for any RDBMS to recognise the >> connecting application, certainly in my view the effort it would take >> to alter the postmaster/odbc driver and others would be a lot more >> than the apparent gain from having that functionality. >> > > > ---------------------------(end of broadcast)--------------------------- > TIP 9: In versions below 8.0, the planner will ignore your desire to > choose an index scan if your joining column's datatypes do not > match >
В списке pgsql-general по дате отправления: