How to ensure data security even if postgres data can be accessed

Asked Jan 06 '17 at 17:34

Active Jan 06 '17 at 17:34

Viewed 38 times

I am installing postgres along side a intranet application. The data folder of postgres can be accessed by the user. I have seen here how one can reset the postgres user password and thus compromising data security.

Am I correct in understanding pg_hba.conf is data specific? Is it possible to lock down modifications to pg_hba.conf or hard code the configuration somewhere so that one cant follow the steps described to the question linked above?

edited May 23 '17 at 12:16

Community

asked Jan 06 '17 at 17:34

eskawl

`The data folder of postgres can be accessed by the user.` It shouldn't. Avoid shell access to the machine. (except for the postgres superuser) And dont give away the postgres account to mortals. – joop Jan 06 '17 at 17:40
can using an on the fly encryption/decryption platform help in restricting the user from accessing the data? How big will be the performance dips – eskawl Jan 07 '17 at 02:48

How to ensure data security even if postgres data can be accessed

0 Answers0