Quick Links

Re: how to remove set_config from all user

From:	"David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com>
To:	Garry Chen <gc92(at)cornell(dot)edu>
Cc:	"pgsql-novice(at)lists(dot)postgresql(dot)org" <pgsql-novice(at)lists(dot)postgresql(dot)org>
Subject:	Re: how to remove set_config from all user
Date:	2018-01-18 19:15:59
Message-ID:	CAKFQuwbmVm2j_DyvqOrGwVq=4yFbAy2VH_bXvqV-FG-KnBg+EA@mail.gmail.com
Views:	Whole Thread \| Raw Message \| Download mbox \| Resend email
Thread:
Lists:	pgsql-novice

On Thu, Jan 18, 2018 at 12:08 PM, Garry Chen <gc92(at)cornell(dot)edu> wrote:

> Hi All,
>
> Is there a way to revoke select
> set_config(‘eeee’,bb’,false) from users? I will not to allow any user be
> able to the “select set_config(….)” statement.
>
>
>
As a practical matter, no. They can just do: "SET ... TO ..." to get
around the function privilege denial even if worked out a usable hack.

David J.

In response to

how to remove set_config from all user at 2018-01-18 19:08:59 from Garry Chen

Responses

RE: how to remove set_config from all user at 2018-01-18 19:19:17 from Garry Chen

Browse pgsql-novice by date

	From	Date	Subject
Next Message	Garry Chen	2018-01-18 19:19:17	RE: how to remove set_config from all user
Previous Message	Garry Chen	2018-01-18 19:08:59	how to remove set_config from all user