Quick Links

Re: Information of pg_stat_ssl visible to all users

From:	Andres Freund <andres(at)anarazel(dot)de>
To:	Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>
Cc:	Magnus Hagander <magnus(at)hagander(dot)net>, Peter Eisentraut <peter_e(at)gmx(dot)net>, Michael Paquier <michael(dot)paquier(at)gmail(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Information of pg_stat_ssl visible to all users
Date:	2015-07-02 20:06:11
Message-ID:	20150702200611.GI16267@alap3.anarazel.de
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On 2015-07-02 16:52:01 -0300, Alvaro Herrera wrote:
> If there's interest in closing these holes, this might be a first

I don't think such an isolated attempt buys us anything except maybe
unsatisfied users.

I can see a benefit in allowing to restrict information about users and
such in other clusters, but changing stat_ssl seeems to be an
inconsequentially small problem on that path.

In response to

Re: Information of pg_stat_ssl visible to all users at 2015-07-02 19:52:01 from Alvaro Herrera

Responses

Re: Information of pg_stat_ssl visible to all users at 2015-07-02 21:06:40 from Magnus Hagander

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Andres Freund	2015-07-02 20:28:20	Re: Add checksums without --initdb
Previous Message	Heikki Linnakangas	2015-07-02 19:53:40	Re: Add checksums without --initdb