Jsp, Tomcat, J2Ee, Linux Web Hosting, Hibernate Programming Blog

CHAPTER 29 Securing PostgreSQL When you park your car at the store, you likely take a moment to lock the doors and set the alarm system, if you have one. It s almost an automatic reaction, because you know that the possibility of the car or its contents being stolen dramatically increases if you don t take such basic yet effective precautions. Ironically, the IT industry at large seems to take the opposite approach when creating the vehicles used to maintain enterprise data. Both IT systems and applications are rife with open doors, leading to theft of customer data, damage, and even destruction as a result of electronic attacks. Often such occurrences take place not because the technology did not offer deterrent features, but simply because the implementer never bothered to put these deterrents into effect. This chapter introduces numerous aspects of PostgreSQL s highly effective security model. In particular, it describes PostgreSQL s user system in detail, showing you how to create users and groups, manage their privileges, and change their passwords. Additionally, this chapter demonstrates some of PostgreSQL s secure connection features. While no amount of discussion will force you to implement these features, hopefully the examples and anecdotes interspersed throughout this chapter will be enough to convince the majority of readers to take the time to do so. After completing this chapter, you should be familiar with the following topics: What steps you should take immediately after starting PostgreSQL for the first time Securing the postmaster process (postgresql.conf) PostgreSQL s host-based authentication system The GRANT and REVOKE functions User account management, including working with groups Creating secure connections with SSL Let s start at the beginning: what you should do before doing anything else with your PostgreSQL server. What You Should Do First This section outlines several rudimentary, yet very important, tasks that you should undertake immediately after completing the installation and configuration process outlined in Chapter 25:
If you are looking for cheap and quality webhost to host and run your website check Jboss Web Hosting services.

This entry was posted on Sunday, May 4th, 2008 at 10:13 am and is filed under Linux. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.