I'm work on understanding and implementing RLS. Since I work on
systems using SELinux (MLS policy) I'm using the sepgsql module that
I've modified slightly i.e. I've added a function named
sepgsql_check_row_perm that I'm using in the policy for example I have
a 'reports' table that looks like:
What are peoples experiences with either/both, pluses/minuses?
Ted
I had been using CrunchyDatas 9.4 with backported RLS but I decided
since my ultimate target is 9.5 that I update to it. However now the
function called for the SELECT policy is not being called. \dt shows
the policy but EXPLAIN ANALYZE of a select doesn't show the filter.
When I turn up debug in p
On Mon, Jan 4, 2016 at 4:54 PM, Tom Lane wrote:
> Ted Toth writes:
>> I had been using CrunchyDatas 9.4 with backported RLS but I decided
>> since my ultimate target is 9.5 that I update to it. However now the
>> function called for the SELECT policy is not being called. \d
I see the insert policy check running but also the select policy using
on insert. I don't understand why the select policy is being run.
Could it possibly be related to using a sequence on the table?
Ted
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to you
Is there a way to configure authentication so that some users require
a password and other users don't?
Ted
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
I'm running selinux mls policy I've got labeled ipsec working and my
postgresql configured to load
sepgsql. I've created a db, run the sepgsql.sql script on it, created
tables and inserted data. How do I
query the security labels on the data? As best I can tell there is no
security_context
column o
This table maintains information about the context of postgresql
objects not the data in tables.
On Wed, Nov 12, 2014 at 5:56 PM, Adrian Klaver
wrote:
> On 11/12/2014 02:45 PM, Ted Toth wrote:
>>
>> I'm running selinux mls policy I've got labeled ipsec working and my
&g
On 11/13/2014 05:58 AM, Ted Toth wrote:
>>
>> This table maintains information about the context of postgresql
>> objects not the data in tables.
>
>
>
>
> http://www.slideshare.net/kaigai/label-based-mandatory-access-control-on-postgresql
>
> Slide 23
>
>
I'm contemplating writing a function for use with the CHECK POLICY
statement. Where can I find documentation describing the arguments
that will be passed to the function?
Ted
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.p
10 matches
Mail list logo
