| From: | Robert Treat <xzilla(at)users(dot)sourceforge(dot)net> |
|---|---|
| To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | pgsql-patches(at)postgresql(dot)org |
| Subject: | Re: [HACKERS] GUC --- prevent non-super user changes |
| Date: | 2003-06-11 22:12:48 |
| Message-ID: | 1055369568.7086.98.camel@camel |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
On Wed, 2003-06-11 at 01:01, Bruce Momjian wrote:
> Here is a proposed fix for the new SUSET of various variables. The
> solution is to create a new GUC context called PGC_USERLIMIT, which
> limits changes by non-super users. For example, non-super users can
> turn on logging, but can't turn it off, and log_min_* logging can have
> added output, but not less output.
>
Is there a danger here that users can crank logging up to the max and
either crash a server due to i/o load, or perhaps create enough "noise"
to cover tracks of something malicious?
Robert Treat
--
Build A Brighter Lamp :: Linux Apache {middleware} PostgreSQL
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2003-06-11 22:29:33 | Re: [HACKERS] GUC --- prevent non-super user changes |
| Previous Message | Bruce Momjian | 2003-06-11 22:12:17 | Re: [HACKERS] "Adding missing from clause" (replacement) |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2003-06-11 22:29:33 | Re: [HACKERS] GUC --- prevent non-super user changes |
| Previous Message | Bruce Momjian | 2003-06-11 22:12:17 | Re: [HACKERS] "Adding missing from clause" (replacement) |