On 12/20/2015 09:16 AM, oleg yusim wrote:
Greetings! I'm new to PostgreSQL, working on it from the point of view of Cyber Security assessment. In regards to the here is my questions: From the security standpoint we have to assure that database invalidates session identifiers upon user logout or other session termination (timeout counts too). Does PostgreSQL perform this type of actions? If so, where are those Session IDs are stored, so I can verify it? Thanks, Oleg
Are you talking about a website session? Does this website session happen to be stored in PG? -Andy -- Sent via pgsql-general mailing list (pgsql-general@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
