Quick Links

Re: Open 7.3 items

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Oliver Elphick <olly(at)lfix(dot)co(dot)uk>
Cc:	Lamar Owen <lamar(dot)owen(at)wgcr(dot)org>, Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>, Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Open 7.3 items
Date:	2002-08-27 22:10:27
Message-ID:	14167.1030486227@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Oliver Elphick <olly(at)lfix(dot)co(dot)uk> writes:
> This should cause no problem, because we have no
> cross-database communication; it should be impossible for "george(at)dummy"
> to have any connection with database "test".

Not so; you need look no further than the owner column of pg_database
to find a case where people can see usernames that might be local to
other databases. Group membership lists might well contain users
from multiple databases, too.

regards, tom lane

In response to

Re: Open 7.3 items at 2002-08-27 21:05:59 from Oliver Elphick

Responses

Re: Open 7.3 items at 2002-08-28 07:22:53 from Oliver Elphick

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Larry Rosenman	2002-08-27 22:11:39	Re: LIMIT 1 FOR UPDATE or FOR UPDATE LIMIT 1?
Previous Message	Tom Lane	2002-08-27 22:08:40	Re: Proposed GUC Variable