| From: | Andrew Dunstan <andrew(at)dunslane(dot)net> |
|---|---|
| To: | |
| Cc: | Postgresql Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: zero knowledge users |
| Date: | 2004-04-06 15:50:46 |
| Message-ID: | 4072D1D6.40000@dunslane.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Rod Taylor wrote:
>On Tue, 2004-04-06 at 10:23, Andrew Dunstan wrote:
>
>
>>I have been doing some experimentation for a series of articles I am
>>writing, and want to create a user with as little privilege as possible
>>who can still do the things I explicitly want him/her to be able to do.
>>
>>In particular, I wanted to be able to deny any useful access to the
>>metadata contained in catalogs and the information schema.
>>
>>
>
>Out of curiosity, why would you deny them access to the information schema?
>
>
>
It might be overkill. Basically I was operating on the principle of
"everything not explicitly allowed is forbidden". I will experiment some
more.
cheers
andrew
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andrew Dunstan | 2004-04-06 16:04:48 | Re: [HACKERS] logging statement levels |
| Previous Message | Tom Lane | 2004-04-06 15:48:25 | Re: Function to kill backend |