From: | "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com> |
---|---|
To: | "Decibel!" <decibel(at)decibel(dot)org> |
Cc: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: Problem with recent permission changes commits |
Date: | 2007-08-27 18:59:05 |
Message-ID: | 46D31EF9.2040302@commandprompt.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Decibel! wrote:
> On Mon, Aug 27, 2007 at 08:08:34AM -0700, Joshua D. Drake wrote:
>> This is a problem. Our analytics software purposefully does not use a
>> super user, you are going to force the use of superusers with admin and
>> monitoring tools.
>
> Well, you could always create a wrapper function that is SECURITY
> DEFINER...
Well from my perspective, it is nice that we don't have to install
anything except a non privileged user to get what we need.
Really, if we change this we might as well also block all access to
information_schema, the net effect is the same.
Joshua D. Drake
- --
=== The PostgreSQL Company: Command Prompt, Inc. ===
Sales/Support: +1.503.667.4564 24x7/Emergency: +1.800.492.2240
PostgreSQL solutions since 1997 http://www.commandprompt.com/
UNIQUE NOT NULL
Donate to the PostgreSQL Project: http://www.postgresql.org/about/donate
PostgreSQL Replication: http://www.commandprompt.com/products/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFG0x75ATb/zqfZUUQRAq/EAKCPH+Sk4+yZJ5s01nxL5RdDJI+gPwCfU1TQ
PEHLy4ca6rivBquF+59MCes=
=RBpF
-----END PGP SIGNATURE-----
From | Date | Subject | |
---|---|---|---|
Next Message | Josh Berkus | 2007-08-27 19:22:45 | Re: Insufficient attention to security in contrib (mostly) |
Previous Message | Decibel! | 2007-08-27 18:55:47 | Re: [HACKERS] Undetected corruption of table files |