Hosting Provided By

Re: [GENERAL] Securing stored procedures and triggers

From: Douglas McNaught <doug(at)mcnaught.org>
Date: Wed Oct 31 2007 - 11:13:23 EDT

mgould <mgould@allcoast.net> writes:

> We are currently migrating from Sybase's ASA 9/10 to PostGres 8.2.4.
> One of the features that is really nice in ASA is the ability to add
> the attribute hidden to a Create procedure, Create function and
> Create trigger. Essentially what this does is encrypt the code so
> that if anyone or any utility gets into the database they cannot see
> any of the actual code. This is a great feature for protecting
> intellectual processing techniques. I don't know if there is anyway
> to do this in PostGres. Before the hidden feature was added, we had
> a competitor steal some of our stored procedure processing code. Is
> there anyway to protect this from happening in PostGres?

The only bulletproof way to do this currently is to write all your stored functions in C and load them as a shared library.

-Doug

---------------------------(end of broadcast)---------------------------
TIP 1: if posting/reading through Usenet, please send an appropriate
       subscribe-nomail command to majordomo@postgresql.org so that your
       message can get through to the mailing list cleanly

Received on Wed Oct 31 15:11:10 2007

This message: [ Message body ]
Next message: Ron St-Pierre: "Re: [GENERAL] getting list of tables from command line"
Previous message: T.J. Adami: "[GENERAL] Server's Locale"
In reply to: mgould: "[GENERAL] Securing stored procedures and triggers"
Next in thread: Reg Me Please: "Re: [GENERAL] Securing stored procedures and triggers"
Reply: Reg Me Please: "Re: [GENERAL] Securing stored procedures and triggers"
Reply: Scott Marlowe: "Re: [GENERAL] Securing stored procedures and triggers"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Mon Jun 16 2008 - 19:09:45 EDT