[Bucardo-general] security
Greg Sabino Mullane
greg at endpoint.com
Fri Jan 15 13:43:12 UTC 2010
> This may sound like a silly question, but is there a base assumption
> that all DBMS servers involved in Bucardo replication (including
> wherever the Bucardo database resides) are behind a firewall ?
No, there is no assumption: security should be set up independent of
Bucardo. All Bucardo needs to do is be able to reach all the databases
through a normal DBD::Pg connection. This can be with SSL, using a
tunnel, or any other means. It's also a good practice to exclude
everyone via pg_hba.conf and make specific permissions for the servers
and users that need to reac it.
--
Greg Sabino Mullane greg at endpoint.com
End Point Corporation
PGP Key: 0x14964AC8
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: OpenPGP digital signature
Url : https://mail.endcrypt.com/pipermail/bucardo-general/attachments/20100115/56f9cc02/attachment.bin
More information about the Bucardo-general
mailing list