Re: Schema security

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Paul Lambert <paul(dot)lambert(at)reynolds(dot)com(dot)au>
Cc: pgsql admin <pgsql-admin(at)postgresql(dot)org>
Subject: Re: Schema security
Date: 2007-12-13 05:35:42
Message-ID: 3212.1197524142@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-admin

Paul Lambert <paul(dot)lambert(at)reynolds(dot)com(dot)au> writes:
> I would have thought giving the user all privileges on a schema would by
> default add them to all objects within it,

Why would you think that?

The analogy to think about is that usage privilege on a schema is
comparable to read access on a directory. That doesn't necessarily give
you access to any single file in the directory --- but lack of it does
ensure you cannot get to those files.

regards, tom lane

In response to

Responses

Browse pgsql-admin by date

  From Date Subject
Next Message Bansal, Gaurav (Gaurav) 2007-12-13 05:53:00 Re: Postgres Start
Previous Message Paul Lambert 2007-12-13 03:28:45 Re: Schema security