Re: pgpass.conf
| От | Shane Ambler |
|---|---|
| Тема | Re: pgpass.conf |
| Дата | |
| Msg-id | 4837E043.6000504@Sheeky.Biz обсуждение исходный текст |
| Ответ на | pgpass.conf ("Graeme Gould" <graeme.gould@aragon-housing.co.uk>) |
| Список | pgsql-admin |
Graeme Gould wrote: > Hi > > I have noticed something relating to this file that I am slightly > worried about. If you open the pgpass.conf file with Notepad it > displays the full contents in open text - including the administrator > name and password. > > Is this something that other people have come across and has > protecting/ciphering this information ever been considered? > Yes that is normal and I don't believe there is any plan to change it. From the manual - <quote> On Unix systems, the permissions on .pgpass must disallow any access to world or group; achieve this by the command chmod 0600 ~/.pgpass. If the permissions are less strict than this, the file will be ignored. On Microsoft Windows, it is assumed that the file is stored in a directory that is secure, so no special permissions check is made. </quote> So on windows it is assumed that the owner of the file (the one who's home dir it is located in and the one running the software that will use it) is the only one that can access the data in the file. Normal permissions setup on windows will match this. It's use is a convenience and I think for the most part not highly recommended. -- Shane Ambler pgSQL (at) Sheeky (dot) Biz Get Sheeky @ http://Sheeky.Biz
В списке pgsql-admin по дате отправления: