[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Gnumed-devel] address@hidden: Re: [GENERAL] Philosophical question]
|
From: |
Karsten Hilbert |
|
Subject: |
[Gnumed-devel] address@hidden: Re: [GENERAL] Philosophical question] |
|
Date: |
Thu, 15 Dec 2011 22:29:13 +0100 |
|
User-agent: |
Mutt/1.5.21 (2010-09-15) |
Here's a good read on why GNUmed does database level security.
Karsten
----- Forwarded message from David Owen <address@hidden> -----
> Date: Wed, 14 Dec 2011 15:17:31 -0700 (MST)
> From: David Owen <address@hidden>
> To: address@hidden
> Subject: Re: [GENERAL] Philosophical question
> User-Agent: Alpine 2.00 (LNX 1167 2008-08-23)
>
> On Wed, 14 Dec 2011, Andreas wrote:
>
> >Hi,
> >
> >I asked elsewhere about the best way to store db credentials within a
> >user-session
> >of a web-app.
>
> You might give this a read:
>
> http://database-programmer.blogspot.com/2009/02/comprehensive-database-security-model.html
>
> It goes through how using a DB user per app user would work.
>
> I don't necessarily agree with it, but it's good reading.
>
> -David
>
> --
> Sent via pgsql-general mailing list (address@hidden)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgsql-general
----- End forwarded message -----
--
GPG key ID E4071346 @ gpg-keyserver.de
E167 67FD A291 2BEA 73BD 4537 78B9 A9F9 E407 1346
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Gnumed-devel] address@hidden: Re: [GENERAL] Philosophical question],
Karsten Hilbert <=