Ow Mun Heng wrote:

-----Original Message-----
From: Tommy Gildseth [mailto:tommy.gilds...@usit.uio.no]
Ow Mun Heng wrote:
I'm starting to use DBLink / DBI-Link and one of the "bad" things is that
the password is out in the clear. What can I do to prevent it from being such? How do I protect it from
'innocent' users?

If I'm not mistaken, it's possible to put your password in the .pgpass file in the postgres-users home folder, on the server where the postgres cluster is running.

Isn't that how one connects using the CLI? Eg: via psql?

My connection string looks like this.

SELECT aaa
   FROM dblink('dbname=hmxmms host=xxx.xxx.xxx.xxx user=yyy
password=zzz'::text, 'SELECT * from tablename'::text) b4(aaa xxx );

I've placed the above as a view hence the user/pass is being hardcoded(?) of
sorts

Just leave out the "password=zzz" part of the connection string.

--
Tommy Gildseth

--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general

Reply via email to