Quick Links

Re: Heavy security bug in 7.2.2-16?

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	heikos(at)foni(dot)net
Cc:	pgsql-novice(at)postgresql(dot)org
Subject:	Re: Heavy security bug in 7.2.2-16?
Date:	2002-12-27 05:26:49
Message-ID:	22197.1040966809@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-novice

Heiko Schroeder <heikos(at)foni(dot)net> writes:
> Especially when the superuser postmaster creates a database, e.g. test, a
> normal user although he is *not* the owner, if it is not denied that he can
> create new databases AND that he can create new users,

A user that can create new users is a superuser; there is no distinction
in Postgres. As a superuser, there are no protection restrictions on
him.

regards, tom lane

In response to

Heavy security bug in 7.2.2-16? at 2002-12-27 02:27:21 from Heiko Schroeder

Responses

sequence generator programmatic invocation (preferably JDBC) at 2002-12-29 12:11:30 from Reshat Sabiq

Browse pgsql-novice by date

	From	Date	Subject
Next Message	Reshat Sabiq	2002-12-29 12:11:30	sequence generator programmatic invocation (preferably JDBC)
Previous Message	K Ramakrishna	2002-12-27 04:05:08	download postgresql for windows