Hosting Provided By

Re: [GENERAL] Securing stored procedures and triggers

From: mgould <mgould(at)allcoast.net>
Date: Wed Oct 31 2007 - 17:18:58 EDT

Thanks all. In the open source community there seems to be more talent to "hack" than in other environments. Once I told ASA to set the "hidden" attribute, I've not had any problems with this, at least that I've heard of. I was hoping that I'd be able to keep others out of the database totally but I can't host these applications for all of my customers.

Best Regards,

Michael Gould
All Coast Intermodal Services, Inc.
904-376-7030

From: Reg Me Please [mailto:regmeplease@gmail.com] To: pgsql-general@postgresql.org
Sent: Wed, 31 Oct 2007 14:26:51 -0400
Subject: Re: [GENERAL] Securing stored procedures and triggers

There's not bulletproof way, in my opinion.

If they copy the whole DB structure *and* the object binaries they'll have the very same functionalities!

Il Wednesday 31 October 2007 16:13:23 Douglas McNaught ha scritto:
> mgould <mgould@allcoast.net> writes:
> > We are currently migrating from Sybase's ASA 9/10 to PostGres 8.2.4.
> > One of the features that is really nice in ASA is the ability to add
> > the attribute hidden to a Create procedure, Create function and
> > Create trigger. Essentially what this does is encrypt the code so
> > that if anyone or any utility gets into the database they cannot see
> > any of the actual code. This is a great feature for protecting
> > intellectual processing techniques. I don't know if there is anyway
> > to do this in PostGres. Before the hidden feature was added, we had
> > a competitor steal some of our stored procedure processing code. Is
> > there anyway to protect this from happening in PostGres?
>
> The only bulletproof way to do this currently is to write all your
> stored functions in C and load them as a shared library.
>
> -Doug
>
> ---------------------------(end of broadcast)---------------------------
> TIP 1: if posting/reading through Usenet, please send an appropriate
> subscribe-nomail command to majordomo@postgresql.org so that your
> message can get through to the mailing list cleanly

-- 
Reg me Please

---------------------------(end of broadcast)---------------------------
TIP 2: Don't 'kill -9' the postmaster

Received on Wed Oct 31 18:54:17 2007

This message: [ Message body ]
Next message: Ian Goldsmid: "[GENERAL] can someone please tell me how to unsubscribe from this group - thanks"
Previous message: Douglas McNaught: "Re: [GENERAL] Securing stored procedures and triggers"
Next in thread: Sam Mason: "Re: [GENERAL] Securing stored procedures and triggers"
Reply: Sam Mason: "Re: [GENERAL] Securing stored procedures and triggers"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Mon Jun 16 2008 - 19:10:37 EDT

Do you need help?