Greetings, Hope the below hasn't already been sent here, if so, sorry, didn't see it in the archives though. This is very important for PostgreSQL upstream addition of SE-Postgres. I'm hopeful that there are some on this list who can help the PostgreSQL core members be comfortable that the patch does what is intended and properly implements the security it claims. The top of the current thread on -hackers can be found here: http://archives.postgresql.org/pgsql-hackers/2009-01/msg01840.php in particular: http://archives.postgresql.org/pgsql-hackers/2009-01/msg01962.php and others around that timeframe help frame this discussion. In particular, we're looking for security experts who are familiar with implementing SELinux (or similar..) in an RDBMS such as PostgreSQL to review the patch, documentation, etc. Please see below, and thanks. Stephen ----- Forwarded message from Bruce Momjian <bruce@xxxxxxxxxx> ----- Date: Sat, 24 Jan 2009 10:36:22 -0500 (EST) From: Bruce Momjian <bruce@xxxxxxxxxx> To: PostgreSQL-announce <pgsql-announce@xxxxxxxxxxxxxx> X-Mailer: ELM [version 2.4ME+ PL124 (25)] X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.2.5 Subject: [ANNOUNCE] Need help on possible PG 8.4 security features The PostgreSQL community is considering including security enhancements in Postgres 8.4, e.g. row-level permissions and SE-Linux security. However, to evaluate the patch and its usefulness, we need security experts who want to use this capability or have used it in other databases. The most recent version of the patch is mentioned here: http://archives.postgresql.org/pgsql-hackers/2009-01/msg01680.php Particularly interesting is the documentation patch: http://sepgsql.googlecode.com/files/sepostgresql-docs-8.4devel-3-r1460.patch If you know someone who is interested in these features or can help in discussing them, please have them subscribe to pgsql-hackers here: http://www.postgresql.org/community/lists/subscribe Email discussion about this topic will start on Wednesday, January 28, at 12:00 GMT, and will include the subject text "SE-PostgreSQL". -- Bruce Momjian <bruce@xxxxxxxxxx> http://momjian.us EnterpriseDB http://enterprisedb.com + If your life is a hard drive, Christ can be your backup. + ---------------------------(end of broadcast)--------------------------- -To unsubscribe from this list, send an email to: pgsql-announce-unsubscribe@xxxxxxxxxxxxxx ----- End forwarded message -----
Attachment:
signature.asc
Description: Digital signature
