Skip site navigation (1) Skip section navigation (2)

Re: [ADMIN] New to PostgreSQL, is this a DoS?

From: Dax Kelson <dkelson-list-pgsql-admin(at)inconnect(dot)com>
To: pgsql-admin(at)postgreSQL(dot)org
Subject: Re: [ADMIN] New to PostgreSQL, is this a DoS?
Date: 1998-11-16 05:55:04
Message-ID: Pine.LNX.4.02A.9811152249490.8418-100000@brookie.inconnect.com (view raw or flat)
Thread:
Lists: pgsql-admin
On Sun, 15 Nov 1998, Dax Kelson wrote:

> Is this a denial of service?  A remote user can connect and create as many
> phantom tables as they want which could possibly interfere with normal
> operation?  How would the admin even know the name of the table to drop?
> 
> If I connect locally as user "postgres" and I can successfully create and
> see the table.
> 
> Is it normal behaviour that user "postgres" must first create the tables
> for them to be useable?

After more testing I found futher strange behavior.  After locally
user "postgres" creates any table in the database, any remote users can
then create any new table, and it isn't "phantom" (can see it/use it).

Is this desirable and/or expected behavior?  It doesn't seem to me that it
is.




In response to

pgsql-admin by date

Next:From: Dax KelsonDate: 1998-11-16 06:08:27
Subject: Permissions/security on pg_* tables?
Previous:From: Dax KelsonDate: 1998-11-16 05:24:58
Subject: New to PostgreSQL, is this a DoS?

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group