[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Gnumed-devel] multitaskhttpd experiment
From: |
Sebastian Hilbert |
Subject: |
Re: [Gnumed-devel] multitaskhttpd experiment |
Date: |
Wed, 14 Jul 2010 18:18:45 +0200 |
User-agent: |
KMail/1.13.3 (Linux/2.6.33-6-desktop; KDE/4.4.5; i686; ; ) |
Am Mittwoch 14 Juli 2010, 17:39:55 schrieb Karsten Hilbert:
> On Wed, Jul 14, 2010 at 08:31:52AM -0700, lkcl wrote:
> > whilst i realise it would be a lot of work, you really should give
> > serious
> >
> > consideration to not using postgresql roles, and doing the RBAC
> > "manually",
>
> No.
>
> > but... hmmm.... that would mean that you could not guarantee data
> > security,
> >
> > wouldn't it? because it would be the app performing the security, with
> > total open-access to the database, wouldn't it?
>
> Exactly.
>
> (Except it seems there's a number of web EMRs that seem fine
> with that sort of thing.)
Yeah. Noone cares about security. Rectent data suggests that user never change
their passwords in their entire life and they use their cat's name anyway :-)
Sebastian
- Re: [Gnumed-devel] multitaskhttpd experiment, (continued)
Re: [Gnumed-devel] multitaskhttpd experiment, lkcl, 2010/07/14
Re: [Gnumed-devel] multitaskhttpd experiment, lkcl, 2010/07/14