Here is some informations and the way to change my configuration.
- user?
- user management
- configuration parameters
- user?
So called ‘user’ is the human who use me is a kind of a customer for me. As you know there are variety of customers, gentle, temper, first time, refferral …. The most of the case in a computer system, a nicer user is decided by ‘user’, I mean a new user will registered as an ‘admin’ or ‘not admin’ due to the register’s decision. And they make a fuss about security. We, a computer system, does not wrong at all, every bad things will be happend by humanbeing.
Therefore I think I should define my ‘user’ by myself. I mean I give a permission to use me only for my trastable users. What is the meaning in ‘trastable’? Yes, you know at least ‘fist time customer’ can not get any trusts in a shop, he/she should come to visit and spend a time in there several time, maybe once in a week, or even once in a month in a real world, for example a restaurant, you know?
I trust a ‘user’ who use me offen. See below
generation | login numbers and giving permissions | ||
create table/api | delete table/api | user management(register) and configuration editing | |
0 | 1 | 1 | 1 |
1 | 1 | 5<= | 8<= |
2 | 1 | 5×3<= | 8×3<= |
3 | 1 | 5×4<= | 8×4<= |
I mean, the user who is ‘generation=0’ is alike ‘admin’, who can handle all function because I trust on it. The ‘generation=0’ user is the original 10 who are registered at the very first time in setting me with login account ‘it is me’. No way ignore them.
Other generations are refferral users by an upper generation user. I mean ‘generation=1’ user is registered by ‘generation=0’ user, ‘generation=2’ user is registered by ‘generation=1’ user and ….. But attention, big number generation user is regurated handlable functions due to its ‘visiting numbers’. E.g, ‘generation=1’ user can create table/api from the first time, but cannot delete it until logging over 5 times, and also inviting another user and change my configuration are prohibited until over 8 times. ‘generation=2’ is be in stricter than 1, they must come over 15 times to get a permission of deleting.
Oh, you may think you can 5 times login in a day quite easily. Imagine, do you go to the same restaurant to be a regular customer? Rather suspicious. So I count up your login numbers once in a day. I mean you need to be a regular customer at least 5 days, in case ‘generation=1’. I expect my trustable users who are ‘generation=0’ will notice something during 5 days. This is my security policy. 🙂
- user management
Quick introduce how to register a new user in me, very simple, type in me ‘invite new user’,’add new user’ and so on. Then I ask you the new user name, you type it to me. That’s all. I do ask neigher other additional info nor password. As you know, a user can login to me with only the user name. I manage them who have a type of permissions according as its generation and login numbers.
Update? No. There is no data for updating.
Delete? No. No one can delete any other users. I do delete it. Indeed I will delete an user account if it has not touched me for 100 days.
You may wonder how is going ‘path phrase’ which is using in deleting api/dropping table and so on. Of course, it can neigher updating nor remindering. You know, this kind of key word handling is to be a critical security hole. Even if I keep watching everything for 24hr everywhere, you have a possibility to leak such kind of info to others. No updating, no remindering are my choise to keep your secret. Another word, do not forget your pass phrase.
- configuration parameters
As same as other compter system, you can change my configurations to fit your computer env. Of course, I do not like it sometimes, but I can understand you might have to do it by chance. Then, the changing process as following,
1. typing ‘show parameter’,’show me configuration’,’show server parameter’ something like that
2. I ask you ‘which parameter?’
3. you tell me the parameter name what you wanna change.
there are two way to point the parameter,
i. type the parameter name directly
ii. type your phrase you think related with it
these are the changeable params
type | explain | parameter name(i) | example phrase(ii) | default |
general server parameters | upload file repository | fileuploadpath | “upload file path”… | repo |
executed sql log file | sqllogfile | “sql log file”… | sql.log | |
file size of sqllogfile[mb] | sqllogfilesize | “sql log file size”… | 10 | |
log file name | logfile | “log name”… | log.log | |
file size of logfile[mb] | logfilesize | “log file size”… | 10 | |
logfile rotation start time | logfile_rotation_open | “rotation start”… | 00:00 | |
logfile rotation end time | logfile_rotation_close | “rotation end”… | 01:02 | |
sql test ‘limit’ number | selectlimit | “limit” | 10 | |
general params for working database | user account database | jetelnadb | “default db”… | foo |
current working database | dbtype | “db”,”database”… | foo | |
postgresql parameters | postgres available | pg_work | “postgresql run”… | false |
postgres post number | pg_port | “postgresql port” | 5432 | |
postgres host | pg_host | “postgresql host” | localhost | |
postgres database name | pg_dbname | “postgresql db name”… | postgres | |
postgres access account | pg_user | “postgresql user”… | postgres | |
postgres access pwd | pg_password | “postgresql password”… | postgres | |
postgres ssl mode | pg_sslmode | “postgresql ssl”… | prefer | |
mysql parameters | mysql available | my_work | “mysql run”… | false |
mysql host | my_host | “mysql host” | localhost | |
mysql database name | my_dbname | “mysql db name”… | mysql | |
mysql port | my_port | “mysql port” | 3306 | |
mysql access account | my_user | “mysql user”… | user | |
mysql access pwd | my_password | “mysql password”… | userpasswd | |
mysql socket | my_unix_socket | “mysql unix socket”… | /var/run/mysqld/mysqld.sock | |
redis parameters | redis available | redis_work | “redis run”… | false |
redis host | redis_host | “redis host” | 127.0.0.1 | |
redis port | redis_port | “redis port” | 6379 | |
redis database name | redis_dbname | “redis db name”… | 0 | |
redis access pwd | redis_password | “redis password”… | – |
4. type ‘change parameter’,’update configuration’ and so on
5. set your new parameter into the displayed input field
6. then follow me
You know this process is as same as the first setting process with ‘it is me’. I show you the example below.
you: me:
'change parameter' → which config?
'postgresql port' → pg_port is '5432 so far
'change parameter' → Change this to =>
you set something → type 'send' for updating ..or 'cancel'
'send' → Done
Make sense?