| From: | Robert Haas <robertmhaas(at)gmail(dot)com> |
|---|---|
| To: | Jeff Davis <pgsql(at)j-davis(dot)com> |
| Cc: | Stephen Frost <sfrost(at)snowman(dot)net>, Isaac Morland <isaac(dot)morland(at)gmail(dot)com>, "Bossart, Nathan" <bossartn(at)amazon(dot)com>, Bharath Rupireddy <bharath(dot)rupireddyforpostgres(at)gmail(dot)com>, PostgreSQL Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: should we allow users with a predefined role to access pg_backend_memory_contexts view and pg_log_backend_memory_contexts function? |
| Date: | 2021-10-15 13:08:27 |
| Message-ID: | CA+TgmoaoQ3D62ziTvTeNKOu_JOZdfjztO_+q-Zuhg4O1yOz9ew@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Thu, Oct 14, 2021 at 3:02 PM Jeff Davis <pgsql(at)j-davis(dot)com> wrote:
> How do you feel about at least allowing the functions to execute (and
> if it's SECURITY INVOKER, possibly encountering a permissions failure
> during execution)?
I think we'd at least need to check that the view owner has execute
permission on the function. I'm not sure whether there are any other
gotchas.
> There are of course security implications with any change like that,
> but it seems like a fairly minor one unless I'm missing something. Why
> would an admin give someone the privileges to read a view if it will
> always fail due to lack of execute privilege?
An excellent question.
--
Robert Haas
EDB: http://www.enterprisedb.com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Alexander Pyhalov | 2021-10-15 13:15:33 | Partial aggregates pushdown |
| Previous Message | Aleksander Alekseev | 2021-10-15 12:24:03 | Re: [PATCH] Proposal for HIDDEN/INVISIBLE column |