Re: New types for transparent encryption
| От | Heikki Linnakangas |
|---|---|
| Тема | Re: New types for transparent encryption |
| Дата | |
| Msg-id | 4A5314F0.3040401@enterprisedb.com обсуждение исходный текст |
| Ответ на | Re: New types for transparent encryption (Greg Stark <gsstark@mit.edu>) |
| Ответы |
Re: New types for transparent encryption
|
| Список | pgsql-hackers |
Greg Stark wrote: > On Tue, Jul 7, 2009 at 10:09 AM, Heikki > Linnakangas<heikki.linnakangas@enterprisedb.com> wrote: >> What kind of attacks would this protect against? Seems a bit pointless >> to me if the password is being sent to the server anyway. If the >> attacker has superuser access to the server, he can harvest the >> passwords as the clients send them in. If he doesn't, the usual access >> controls with GRANT/REVOKE would be enough. > > It would still protect against offline attacks such as against backup files. True, but filesystem-level encryption handles that scenario with less pain. -- Heikki Linnakangas EnterpriseDB http://www.enterprisedb.com
В списке pgsql-hackers по дате отправления: