Re: Localhost vs. Unix Domain Sockets?

Поиск

Список

Период

Сортировка

От	Ken Tanzer
Тема	Re: Localhost vs. Unix Domain Sockets?
Дата	19 августа 2014 г. 01:46:34
Msg-id	CAD3a31WsC9+Cdr2YMVFk1Gwebh40e2O_4WqiGVBNLkf0tEQVjg@mail.gmail.com обсуждение исходный текст
Ответ на	Re: Localhost vs. Unix Domain Sockets? (John R Pierce <pierce@hogranch.com>)
Ответы	Re: Localhost vs. Unix Domain Sockets?
Список	pgsql-general

Дерево обсуждения

Thanks. I'm not really worried about this particular vulnerability, just wondering about the more general idea that having db user name = os user could reduce your security, even if only slightly. Is it just as conceivable that a vulnerability could come along that was more exploitable only if the two names were _different_?

To put it another way, keeping the two sets of names distinct is incrementally more complex to manage. Which might be worth it if there really is any gain. Is this a "best practice," or is it really a manifestation of its closely-related cousin, the "silly practice?" :)

Cheers,

Ken

AGENCY Software

A Free Software data system

By and for non-profits

http://agency-software.org/

https://agency-software.org/demo/client

ken.tanzer@agency-software.org

(253) 245-3801

Subscribe to the mailing list to

learn more about AGENCY or

follow the discussion.

В списке pgsql-general по дате отправления:

Вход в личный кабинет

Восстановление пароля

Подтверждение аккаунта

Изменение пароля

Re: Localhost vs. Unix Domain Sockets?