It's rumoured that Euler Taveira de Oliveira once said:
> Hi Christopher,
>> > "The \l command should only list databases that the current user is
>> > authorized for, the \du command should only list users authorized
>> > for the current database (and perhaps only superusers should get
>> > even that much information), etc. Perhaps it is possible to set PG
>> > to do this, but that should probably be the default."
> Seem reasonable. Why not prevent normal users to dig on the pg_catalog?
> What is the impact of it?
Because they can't use tools like pgAdmin or phpPgAdmin unless they can at
least read all the catalogs.
In response to
pgsql-hackers by date
|Next:||From: Tom Lane||Date: 2004-03-29 18:16:25|
|Subject: Re: Increasing security in a shared environment ... |
|Previous:||From: Marc G. Fournier||Date: 2004-03-29 17:20:59|
|Subject: Re: Increasing security in a shared environment ...|