At 2014-07-01 21:39:27 +0900, maumau...@gmail.com wrote: > > Won't it be burden and a headache to maintain pgaudit code when it > becomes obsolete in the near future?
Maybe it's a bit unfair to single out this statement to respond to, because it seems at best tangential to your larger point, but: If it were to really become obsolete (not sure about "the near future"), it wouldn't need much maintenance. It already works about as well as it ever will on older releases (e.g., we have no hopes of ever backporting enough of event triggers to provide DDL deparsing in 9.3). > I'm afraid they would be disappointed if PostgreSQL provides auditing > functionality which does not conform to any real regulations like PCI > DSS, NIST I foresee lots of disappointment, then. I don't think even Stephen is advocating NIST-compliance as the *baseline* for serious auditing in core, just that we need a design that lets us get there sometime. -- Abhijit -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
