| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Stephen Frost <sfrost(at)snowman(dot)net> |
| Cc: | Joe Conway <mail(at)joeconway(dot)com>, Andres Freund <andres(at)anarazel(dot)de>, justin(dot)catterson(at)sofiebio(dot)com, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission |
| Date: | 2015-10-22 16:34:55 |
| Message-ID: | 49758.1445531695@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs pgsql-hackers |
Stephen Frost <sfrost(at)snowman(dot)net> writes:
> * Joe Conway (mail(at)joeconway(dot)com) wrote:
>> On 10/21/2015 12:46 PM, Tom Lane wrote:
>>> Attached patch rips out CREATEUSER and NOCREATEUSER options lock, stock,
>>> and barrel.
>> Looks good to me.
>>> Another possibility is to change them to actually mean CREATEROLE and
>>> NOCREATEROLE. I think probably a clean break is better though.
>> I think that would be too confusing. I'd rather see them go away ala
>> your patch.
> Agreed.
Hearing no objections, done that way.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Gavin Flower | 2015-10-22 20:02:58 | Re: PC users trying to create database |
| Previous Message | Stephen Frost | 2015-10-22 15:54:39 | Re: Re: [BUGS] BUG #13694: Row Level Security by-passed with CREATEUSER permission |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2015-10-22 16:53:49 | Re: clearing opfuncid vs. parallel query |
| Previous Message | David Fetter | 2015-10-22 16:26:46 | Re: clearing opfuncid vs. parallel query |