Re: database file encryption.
| От | nrdb |
|---|---|
| Тема | Re: database file encryption. |
| Дата | |
| Msg-id | 4EA36BB5.9080409@butterflystitches.com.au обсуждение исходный текст |
| Ответ на | Re: database file encryption. (Tom Lane <tgl@sss.pgh.pa.us>) |
| Список | pgsql-hackers |
On 10/23/2011 08:17 AM, Tom Lane wrote: > "Joshua D. Drake"<jd@commandprompt.com> writes: >> Any patch you submit will be subject to quite a bit of discussion so be >> prepared for that. Also it will have to be portable to Windows. > > The first question that's going to be asked is why you don't just use an > encrypted file system, instead. Not every problem has to be solved at > the database level. > > regards, tom lane > Well the database files are always encrypted, with using a encrypted file system, there is an unencrypted view of the files visible. I realise that under normal setup this is readable by only the postgres user, and if you could read the files you would also be able to interrogate the server to get the data. But if the postgres server wasn't running yet (i.e. the password hadn't been entered), there would be no data visible. I don't know anything about Windows, does it have the same file security as Linux? I realise the difference is small.
В списке pgsql-hackers по дате отправления: