Skip site navigation (1) Skip section navigation (2)

Re: Postgres Permissions Article

From: Karsten Hilbert <Karsten(dot)Hilbert(at)gmx(dot)net>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: Postgres Permissions Article
Date: 2017-03-29 09:37:15
Message-ID: 20170329093714.56ol2l7wo6fxhvn7@hermes.hilbert.loc (view raw, whole thread or download thread mbox)
Thread:
Lists: pgsql-generalpgsql-hackers
On Tue, Mar 28, 2017 at 09:47:40AM -0700, Paul Jungwirth wrote:

> I wrote a blog post about the Postgres permissions system, and I thought I'd
> share:
> 
> http://illuminatedcomputing.com/posts/2017/03/postgres-permissions/

> I also shared a few opinions amidst the facts (like that `USAGE` for schemas
> doesn't add much), so I am very pleased to have those challenged. You can
> consider them my own outstanding questions. I'd be especially grateful for
> any feedback there.

Not that I am an expert in any way but here's a thought on
why a permission on foreign key creation might be useful:

Being able to create foreign keys may allow to indirectly
discover whether certain values exists in a table which I
don't otherwise have access to (by means of failure or
success to create a judiciously crafted FK).

Karsten
-- 
GPG key ID E4071346 @ eu.pool.sks-keyservers.net
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346


In response to

Responses

pgsql-hackers by date

Next:From: Amit KapilaDate: 2017-03-29 10:39:49
Subject: Re: [POC] A better way to expand hash indexes.
Previous:From: Craig RingerDate: 2017-03-29 09:17:07
Subject: Re: Logical decoding on standby

pgsql-general by date

Next:From: AndrusDate: 2017-03-29 10:03:40
Subject: How to get correct local time
Previous:From: Giuseppe SaccoDate: 2017-03-29 07:25:08
Subject: Using relations in the SELECT part

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group