Re: sepgsql contrib module
От | Simon Riggs |
---|---|
Тема | Re: sepgsql contrib module |
Дата | |
Msg-id | 1293439986.1193.61952.camel@ebony обсуждение исходный текст |
Ответ на | sepgsql contrib module (KaiGai Kohei <kaigai@ak.jp.nec.com>) |
Ответы |
Re: sepgsql contrib module
|
Список | pgsql-hackers |
On Fri, 2010-12-24 at 11:53 +0900, KaiGai Kohei wrote: > The attached patch is the modular version of SE-PostgreSQL. Looks interesting. Couple of thoughts... Docs don't mention row-level security. If we don't have it, I think we should say that clearly. I think we need a "Guide to Security Labels" section in the docs. Very soon, because its hard to know what is being delivered and what is not. Is the pg_seclabel table secure? Looks like the labels will be available to read. How do we tell if sepgsql is installed? What happens if someone alters the configuration so that the sepgsql plugin is no longer installed. Does the hidden data become visible? Thanks -- Simon Riggs http://www.2ndQuadrant.com/books/PostgreSQL Development, 24x7 Support, Training and Services
В списке pgsql-hackers по дате отправления: