Обсуждение: query to show locked / disabled users?

I have a client that says there were break in attempts and many db users 
are now disabled / locked because of too many wrong pw attempts. Is 
there  a select that will show these users?


Thanks in advance

I have a client that says there were break in attempts and many db users are now disabled / locked because of too many wrong pw attempts. Is there  a select that will show these users?

"David G. Johnston" <david.g.johnston@gmail.com> writes:
> On Thursday, April 14, 2022, Sbob <sbob@quadratum-braccas.com> wrote:
>> I have a client that says there were break in attempts and many db users
>> are now disabled / locked because of too many wrong pw attempts. Is there
>> a select that will show these users?

>  You can look at pg_roles.

That probably won't help much, because Postgres has no built-in
mechanism for disabling users on the basis of "too many wrong pw
attempts".  Whatever has decided that must be external to Postgres
(perhaps getting accessed via LDAP or PAM?) and you're going to have
to look at its state.  In short, there's not enough info here for
us to offer any useful advice.

            regards, tom lane

Got it, thanks


On 4/14/22 13:34, Tom Lane wrote:
> "David G. Johnston" <david.g.johnston@gmail.com> writes:
>> On Thursday, April 14, 2022, Sbob <sbob@quadratum-braccas.com> wrote:
>>> I have a client that says there were break in attempts and many db users
>>> are now disabled / locked because of too many wrong pw attempts. Is there
>>> a select that will show these users?
>>   You can look at pg_roles.
> That probably won't help much, because Postgres has no built-in
> mechanism for disabling users on the basis of "too many wrong pw
> attempts".  Whatever has decided that must be external to Postgres
> (perhaps getting accessed via LDAP or PAM?) and you're going to have
> to look at its state.  In short, there's not enough info here for
> us to offer any useful advice.
>
>             regards, tom lane