ALTER ROLE/DATABASE RESET ALL versus security

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Alvaro Herrera <alvherre(at)commandprompt(dot)com>
Cc: pgsql-hackers(at)postgreSQL(dot)org
Subject: ALTER ROLE/DATABASE RESET ALL versus security
Date: 2009-11-14 00:08:22
Message-ID: 28907.1258157302@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

It looks to me like the code in AlterSetting() will allow an ordinary
user to blow away all settings for himself. Even those that are for
SUSET variables and were presumably set for him by a superuser. Isn't
this a security hole? I would expect that an unprivileged user should
not be able to change such settings, not even to the extent of
reverting to the installation-wide default.

regards, tom lane

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message James Mansion 2009-11-14 00:14:28 Re: Listen / Notify rewrite
Previous Message Alvaro Herrera 2009-11-14 00:05:14 Re: tsearch parser inefficiency if text includes urls or emails - new version