Skip site navigation (1) Skip section navigation (2)


From: Bruce Momjian <bruce(at)momjian(dot)us>
To: Alvaro Herrera <alvherre(at)commandprompt(dot)com>
Cc: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, pgsql-hackers(at)postgresql(dot)org
Subject: Re: ALTER ROLE/DATABASE RESET ALL versus security
Date: 2010-02-27 03:38:49
Message-ID: (view raw or whole thread)
Lists: pgsql-hackers
Alvaro Herrera wrote:
> Tom Lane wrote:
> > Alvaro Herrera <alvherre(at)commandprompt(dot)com> writes:
> > > Tom Lane wrote:
> > >> It looks to me like the code in AlterSetting() will allow an ordinary
> > >> user to blow away all settings for himself.  Even those that are for
> > >> SUSET variables and were presumably set for him by a superuser.  Isn't
> > >> this a security hole?  I would expect that an unprivileged user should
> > >> not be able to change such settings, not even to the extent of
> > >> reverting to the installation-wide default.
> > 
> > > Yes, it is, but this is not a new hole.  This works just fine in 8.4
> > > too:
> > 
> > So I'd argue for changing it in 8.4 too.
> Understood.  I'm starting to look at what this requires.

Any progress on this?

  Bruce Momjian  <bruce(at)momjian(dot)us>
  PG East:
  + If your life is a hard drive, Christ can be your backup. +

In response to


pgsql-hackers by date

Next:From: Greg StarkDate: 2010-02-27 03:40:57
Subject: Re: Hot Standby query cancellation and Streaming Replication integration
Previous:From: Bruce MomjianDate: 2010-02-27 03:29:30
Subject: Re: plpgsql: numeric assignment to an integer variable errors out

Privacy Policy | About PostgreSQL
Copyright © 1996-2015 The PostgreSQL Global Development Group