SE-PostgreSQL uses SELinux for database security
Posted Jul 28, 2007 22:21 UTC (Sat) by jtreleaven
Parent article: SE-PostgreSQL uses SELinux for database security
I am very supportive of the development of SE-PostgreSQL. I have written web apps that stored extremely sensitive information in a RDMS - and worried that it was vulnerable to zero-day exploits. You can put your RDMS machine behind a firewall, but your webserver has to be able to reach it, obviously, and the webserver has to be reachable by the outside world - so with zero-day exploits of apache and PostgreSQL the sensitive data in your database will always be open to plunder. SE-PostgreSQL seems to me like a great way to solve this problem and to provide really sensitive data the protection it requires.
to post comments)