We are expecting following advantages through this, Unauthorized use either by the 1. DB administrator 2. ex-developer Or 3. Any body This why PostgreSQL has the concept of “ROLE”s… The data, not the schema, is what needs to be secured…you are not preventing unauthorized use only making both it and authorized use more difficult. It isn’t that hard to get the database to tell you all the table and field names then it is just a matter of issuing a “SELECT * FROM ….” to see/retrieve the data. A rose is a rose by any other name… For the people you do trust you are making them jump through lots of hoops in order to work with the schema. David J. |
