Introducing Crunchy Data Warehouse: A next-generation Postgres-native data warehouse. Crunchy Data Warehouse Learn more
Joe Conway
Joe Conway
In Part 1 of this blog, we covered quite a bit of information with respect to how a PostgreSQL database is initially configured by default from the perspective of discretionary access control. We also saw how to inspect those default behaviors using the crunchy_check_access extension. In Part 2, we will explore the situation identified in CVE-2018-1058 and discuss how to protect yourself. Finally we have come to the Pièce De Résistance! CVE-2018-1058 describes how a user can create object...
Read MoreJoe Conway
Joe Conway
Recently I gave a "deep dive" talk on the topic of PostgreSQL security, and I wanted to capture one part of that content into a blog since this format is both better for making that content stand on its own and for expanding on it a bit. Specifically, in this two-part blog, we will cover a PostgreSQL extension that I wrote called crunchy_check_access -- the motivation behind it and what it does -- and then use that extension to probe and understand the consequences of the default, out of the...
Read MoreJonathan S. Katz
Jonathan S. Katz
The PostgreSQL Global Development Group provided an out-of-cycle update release for all supported to provide a fix for the CVE-2019-10164 vulnerability. This vulnerability only affects people running PostgreSQL 10, 11 or the 12 beta, and it is effectively remediated by simply upgrading all of your PostgreSQL installations to the latest versions. What follows is some more insight about what this vulnerability is, the impact it can have in your environment, how to ensure you have patched all of...
Read MorePatrick McLaughlin
Patrick McLaughlin
The Crunchy PostgreSQL Operator 4.0 provides an open source PostgreSQL-as-a-Service for Kubernetes platform. This post provides some easy steps to help you get started, specifically deploying the Crunchy PostgreSQL Operator in Google Kubernetes Engine ( GKE ) making use of the Crunchy PostgreSQL Operator Ansible Installer . The Crunchy PostgreSQL Operator 4.0 provides Ansible playbooks to automate the installation. These Ansible playbooks allow users to deploy the operator to a variety o...
Read MoreJeff McCormick
Jeff McCormick
Crunchy Data is pleased to release PostgreSQL Operator 4.0 . Crunchy PostgreSQL Operator extends Kubernetes to give you the power to easily create, configure and manage PostgreSQL clusters at scale. When combined with the Crunchy PostgreSQL Container Suite , the Crunchy PostgreSQL Operator provides an open source software solution for PostgreSQL scaling, high-availability, disaster recovery, monitoring, and more. All of this capability comes with the repeatability and automation that comes fr...
Read MoreDave Cramer
Dave Cramer
Kubernetes is a very popular container orchestration framework. I’ll show you how to get Symmetric-DS working on a single Kubernetes instance. I had previously explored how to build an active-active PostgreSQL cluster using Symmetric-DS. The steps are essentially the same on Kubernetes: 1. Start 2 PostgreSQL pods 2. Create a user and a database on each pod/instance 3. Start the primary symmetric-ds pod 4. Add the symmetric-ds triggers and routes 5. Open registration 6. Start the secondary s...
Read MorePaul Ramsey
Paul Ramsey
Most businesses have databases of previous customers, and data analysts will frequently be asked to join arbitrary data to the customer tables in order to provide analysis. Unfortunately joining address data together is notoriously difficult: • The same address can be expressed in many ways • The parts of addresses are not always clear • There are valid lexically very similar addresses very nearby any given address The same address can be expressed in many ways The parts of addresses are not alw...
Read MoreChirag Dave
Chirag Dave
The Crunchy PostgreSQL Operator is a controller that runs within a Kubernetes cluster that provides a means to deploy and manage PostgreSQL clusters. pgBackRest is one of the most simple yet powerful backup and restore tools, with a bunch of rich features especially for backing up large databases. At Crunchy Data we have made significant improvements in the PostgreSQL Operator functionality especially for integrating pgBackRest support . This blog post will demonstrate how pgBackRest is we...
Read MoreDouglas Hunley
Douglas Hunley
Crunchy Data has recently announced an update to the CIS PostgreSQL Benchmark by the Center for Internet Security , a nonprofit organization that provides publications around standards and best practices for securing technologies systems. This newly published CIS PostgreSQL 10 Benchmark joins the existing CIS Benchmarks for PostgreSQL 9.5 and 9.6 while continuing to build upon Crunchy Data's efforts with the PostgreSQL Security Technical Implementation Guide (PostgreSQL STIG ). As mention...
Read MoreYogesh Sharma
Yogesh Sharma
One of the most important things to using PostgreSQL successfully in your development and production environments is simply getting started! One of the most popular ways to install PostgreSQL is by using RPM packages. The PostgreSQL RPM packages work across many Linux distributions, including, RedHat Enterprise Linux ( RHEL ), CentOS, Fedora, Scientific Linux, and more, and the PostgreSQL community provides installers for these distributions. This guide will help you get started with install...
Read More