| From: | Garry Chen <gc92(at)cornell(dot)edu> |
|---|---|
| To: | "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com> |
| Cc: | "pgsql-novice(at)lists(dot)postgresql(dot)org" <pgsql-novice(at)lists(dot)postgresql(dot)org> |
| Subject: | RE: how to remove set_config from all user |
| Date: | 2018-01-18 19:19:17 |
| Message-ID: | BLUPR04MB3867ED05B9648CE4D6F3C42DAE80@BLUPR04MB386.namprd04.prod.outlook.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-novice |
In that case what is the best practice for it? Any suggestion.
Garry
From: David G. Johnston [mailto:david(dot)g(dot)johnston(at)gmail(dot)com]
Sent: Thursday, January 18, 2018 2:16 PM
To: Garry Chen <gc92(at)cornell(dot)edu>
Cc: pgsql-novice(at)lists(dot)postgresql(dot)org
Subject: Re: how to remove set_config from all user
On Thu, Jan 18, 2018 at 12:08 PM, Garry Chen <gc92(at)cornell(dot)edu<mailto:gc92(at)cornell(dot)edu>> wrote:
Hi All,
Is there a way to revoke select set_config(‘eeee’,bb’,false) from users? I will not to allow any user be able to the “select set_config(….)” statement.
As a practical matter, no. They can just do: "SET ... TO ..." to get around the function privilege denial even if worked out a usable hack.
David J.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David G. Johnston | 2018-01-18 19:36:05 | Re: how to remove set_config from all user |
| Previous Message | David G. Johnston | 2018-01-18 19:15:59 | Re: how to remove set_config from all user |