2830
English speaking PostgreSQL public chat. This group is for discussions on PostgreSQL-related topics and strives to provide best-effort support as well.
Yes, I agree. This is a perfect case for Public Key/Private Key Encryption. We have a trigger that encrypts some columns (non searchable) with the Public Key.
Only some users, running the client, have access (without knowing it, even) to the Private key, and they can forcibly decrypt a field (or in some cases it can be transparent to them).
Having that in the client that takes good care of the Private key is great. The data is always safe. And the existing security system in the client application can revoke the decryption feature from specific users.
I was sad that bitemporal tables couldn’t ship in v17, but this helps. I at least understand why now.
Читать полностью…
Hi All ,
please let me know if anyone can provide Support for MSSQL& postgresql
Hi guys
How do we manage database backup in cloud postgresql (AWS aurora)
Some of developers they are completely not aware of this and find it too complex to use the key within the application layer and to have their code embedded with keys and functions all over. I mean it is already applicable to have this on the database level and to automate that by having triggers or so
Читать полностью…
... which may very well include encrypting data in certain columns, but on *application* level. ☝️
Читать полностью…
How to Encrypt Data Columns in PostgreSQL | Vultr Docs
https://docs.vultr.com/how-to-encrypt-data-columns-in-postgresql
Hi everyone.
I need some information about
Row level encryption any concept in postgreSQL. Please guide me or provide document if available
Advance
Thanks lot
If you want your query to be case insensitive, use ILIKE
Ispirer SQLWays Wizard can assist in the migration. Don't expect 100% coverage though.
Читать полностью…
Hi friends, can anyone advise which tool is helpful to migrate from SQL server to postgresql
Читать полностью…
Ok then how can I restore database if any issues occur. Can I get the database in local
Читать полностью…
U can schedule it on AWS to take snapshot daily at ur preference window
Читать полностью…
You accidentally just pointed out the main problem of the topic. And the reason why so many snake oil approaches are out there...
People finding *working* with encryption "too complex" get to decide the encryption architecture. Which usually results in "solutions" that "tick the box", make everyone's life harder, but don't improve the security at all. Adding insult to injury, it costs development time which then is missing in e.g. implementing proper session handling etc.
And at some point some millenial (sorry, youngsters, no offence! 😉) decides that it's much more comfortable to just cache everything (s)he gets from the DB in a text file in an S3 bucket or something like that.
The "Caveats" and "Approaches to Avoid" paragraphs there are pretty important... maybe read them first, might make you think about if encrypting columns is really what you want.
My NSHO is that the time and money is better spent for implementing proper security, esp. in the frontend application...
GNU PG (GNU Privacy Guard) tool, gpg in generating the pair of keys if you opt for encryption using keys whether asymmetric or symmetric, then use the pgcrypto extention on the database
Читать полностью…
That's a very complex topic. Partly because there's metric tons of snake oil "solutions" out there.
Check out https://www.youtube.com/watch?v=guoXpBBo8qc
We cannot retrieve records using below query
Select *from tablename where column like '%abc%'
But
We can retrieve records using below query
Select *from tablename where column like '%ABC%'
I see we have a member from this group with the name Evol is it the same member whom we have as a "person of the week.."
Читать полностью…
PostgreSQL Person of the Week interview with: Vasilis Ventirozos
https://postgresql.life/post/vasilis_ventirozos/
For me, it doesn't matter much — whether it is just a database filling with the answers (either personal requireter's database or company seeking to grow it's social network data lake) or someone is looking for drops (btw, looks like carders do that more frequently than state agents).
It's not a job opportunity, therefore it's a scam.