Database Permissions

Mike Withers wrote:

My apologies if the answer(s) to my questions are obvious to others. I'm
still quite new to Linux and PostgreSQL.

I have set up a database to be used by hundreds of students. Within psql I
set GRANT SELECT ON database TO PUBLIC on the database but have found that
if I login as one of those students I can login as the database owner by
using

\connect database owner

I then used:

ALTER USER owner WITH PASSWORD 'password';

the database confirmed a change had been made. I had hoped that by
explicitly putting a password in for the owner that if I used the \connect
.... then I would be required to put a password in to connect as owner.

Unfortunately not.

Any suggestions as to how I might secure the database to SELECTS only.
Curerently I have not invoked password authentication on the database
itself. I'm currently using the default settings on pg_hba.conf and I'm
wondering if the problem can be handled by altering this?

Perhaps this problem can be corrected by editing your

pg_hba.conf file...

and require identd or password authentication for the

127.0.0.1
or
your.local.machine.ip.address

;-)

HTH

Cheers,

John Clark

--
/) John Clark Naldoza y Lopez (\
/ ) Software Design Engineer III ( \
_( (_ _ Web-Application Development _) )_
(((\ \> /_> Cable Modem Network Management System <_\ </ /)))
(\\\\ \_/ / NEC Telecom Software Phils., Inc. \ \_/ ////)
\ / \ /
\ _/ phone: (+63 32) 233-9142 loc. 3113 \_ /
/ / cellphone: (+63 919) 399-4742 \ \
/ / email: njclark@ntsp.nec.co.jp \ \

"Intelligence is the ability to avoid doing work, yet getting the work
done"
--Linus Torvalds