Search Postgresql Archives

Re: Restrict connection from pgadmin.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sun, Feb 2, 2020 at 11:48 PM Pawan Sharma <pawanpg0963@xxxxxxxxx> wrote:
Hi All, 

Is there any way to restrict the connection only from pgadmin???  The same user can connect through application but can't from pgadmin.. Or any logon triggers..???

Why just pgAdmin?  Why not psql?  How do you expect to know the difference? Its all the same protocol going back-and-forth no matter what kind of user interface you provide to the user.

You can make it difficult for the user to gain direct access from their machine while allowing a local application to do so, but I'm doubtful it can be made hacker-proof.  Specifically the user can be assumed to be allowed to attempt a connection but if they lack valid credentials they will be unable to get in.  If you need connection-level security you want to host the application on a separate machine that does have access to PostgreSQL and only provide user interface access to the application to the user.  As they are never truly on the machine that has access to the database they will be unable to establish their own connection.

You can log and monitor logon attempts but there is no server level triggers.  Again, the client sends along all of the validation information and so can make up values for any parameters you might wish to check so that they look like, i.e., your application as far as the authentication code is concerned.

David J.


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Books]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]

  Powered by Linux