Quick Links

Re: ALTER ROLE/DATABASE RESET ALL versus security

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Alvaro Herrera <alvherre(at)commandprompt(dot)com>
Cc:	Bruce Momjian <bruce(at)momjian(dot)us>, pgsql-hackers(at)postgresql(dot)org
Subject:	Re: ALTER ROLE/DATABASE RESET ALL versus security
Date:	2010-03-18 15:59:47
Message-ID:	11780.1268927987@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Alvaro Herrera <alvherre(at)commandprompt(dot)com> writes:
> I have come up with the attached patch. I haven't tested it fully yet,
> and I need to backport it. The gist of it is: we can't simply remove
> the pg_db_role_setting tuple, we need to ask GUC to reset the settings
> array, for which it checks superuser-ness on each setting.

I think you still want to have a code path whereby the tuple will be
deleted once the array is empty. Failing to check that is inefficient
and also exposes clients such as pg_dump to corner case bugs.

regards, tom lane

In response to

Re: ALTER ROLE/DATABASE RESET ALL versus security at 2010-03-18 15:48:57 from Alvaro Herrera

Responses

Re: ALTER ROLE/DATABASE RESET ALL versus security at 2010-03-25 15:11:38 from Alvaro Herrera

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Pavel Stehule	2010-03-18 16:05:15	Re: WIP: shared ispell dictionary
Previous Message	Alvaro Herrera	2010-03-18 15:48:57	Re: ALTER ROLE/DATABASE RESET ALL versus security