Hello,
I rarely post in this group, but felt input would be important to chime in
here from a security aspect.
One of the primary challenges I've seen in the past with migrating to
PostgreSQL from Oracle is implementing DISA STIG compliance. This may or
may not be a requirement in your environme
How can I select a list of sequences in Postgres 8.4?
I'm writing functions which select names of tables, tablespaces, sequences, etc.
For example, I can select a list of table names using the following command:
SELECT tablename FROM pg_tables WHERE schemaname = 'public';
However, I can't seem
One of the programmers I work with is interested in migrating from
Oracle to PostgreSQL as the backend for his applications.
Is there a PostgreSQL "beginners" guide available somewhere, which
might help him understand setting up a test database on his Windows
system?
I may also be performing a 30
compliance, I might actually make the system more
secure.
Ken
On Mon, Jan 31, 2011 at 1:07 PM, Tom Lane wrote:
> Kenneth Buckler writes:
>> Does autovacuum automatically use the 'postgres' role?
>
> It automatically uses the bootstrap superuser role.
>
>> If so, how
I'm seeing the following warning repeatedly in my postgres log. I'm
using PostgreSQL 8.4 on RHEL6.
Jan 29 04:49:57 myserver postgres[17308]: [3-1] user= db= host=
WARNING: skipping "mytable" --- only table or database owner can
vacuum it
"mytable" is owned by a non-superuser role which cannot l
You just need to log DDL, correct?
Why not just edit postgres.conf and set log_statement to 'ddl'.
See http://www.postgresql.org/docs/9.0/static/runtime-config-logging.html
If you need to include username, database, etc, take a look at
log_line_prefix on the same page.
Ken
On Wed, Jan 26, 2011
Have you considered switching to embedded Linux instead of XP?
This has the potential to help increase performance, as embedded Linux
will most likely have a smaller footprint.
Give this a read:
http://www.lynuxworks.com/products/whitepapers/xp-vs-linux.php3
Of course, if you're using an applica
Something to think about heredoes your database actually require
encryption? Or is the encryption handled between remote user and
application?
If your database is shared locally on the same server as your
application, then you shouldn't need FIPS encryption since the
communication between data
I don't believe the EAL certification is valid for the community
version of PostgreSQL.
From the EAL certification report:
"PostgreSQL Certified Version is a relational database management
system, which is applicable to enterprise business. It is an enhanced
version of the open source PostgreSQL a
On Mon, Dec 20, 2010 at 8:53 PM, Craig Ringer
wrote:
>
> Do you have a trusted boot path from BIOS to bootloader to kernel to init
> core userspace, where everything is digitally signed (by you or someone
> else) and verified before execution? Do you disable kernel module loading?
>
> If not, you'
On Mon, Dec 20, 2010 at 3:31 PM, Scott Marlowe wrote:
>
>
> But, if the script is run on the same machine as postgresql is on, the
> scripts that check for changes could be compromised as well and then
> you'd never know.
>
I agree, if the system has been compromised, nothing will prevent the
scr
Hello,
I am investigating security requirements for configuring a PostgreSQL
database on a Linux system.
One of the security requirements our organization would like to implement is
"trusted startup", in that PostgreSQL would verify the authenticity of the
binaries and configuration files before m
12 matches
Mail list logo
