| From: | The Hermit Hacker <scrappy(at)hub(dot)org> |
|---|---|
| To: | Bruce Momjian <maillist(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | matti(at)algonet(dot)se, pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | Re: [HACKERS] Here it is - view permissions] |
| Date: | 1998-02-23 13:39:39 |
| Message-ID: | Pine.NEB.3.95.980223083757.17896D-100000@hub.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Mon, 23 Feb 1998, Bruce Momjian wrote:
> > > Why does views default to 'select' permission for 'public'?
> > > I think most people will never think of the possibility that others
> > > will be able to SELECT their data through views.
> > > Should not 'create view' at least print a NOTICE about this?
> >
> > Considering how much security we are putting around everything
> > else, is it unreasonably to have both 'create view'/'create table' default
> > to 'revoke all' to public, and 'grant all' to owner?
>
> Most commercial databases don't do this.
Well, just checked with Wayne (My Oracle Guru) and in Oracle,
everything is private by default, and you open it up as required/desired
to other ppl...
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Vadim B. Mikheev | 1998-02-23 13:53:32 | ExecReScan implemented for Sort & Unique (DISTINCT) nodes (empty). |
| Previous Message | Andrew Martin | 1998-02-23 13:39:12 | Re: [HACKERS] Who is everyone? |