| From: | Andrey Borodin <x4mmm(at)yandex-team(dot)ru> |
|---|---|
| To: | Evgeniy Efimkin <efimkin(at)yandex-team(dot)ru> |
| Cc: | Robert Haas <robertmhaas(at)gmail(dot)com>, Michael Paquier <michael(at)paquier(dot)xyz>, Jeff Davis <pgsql(at)j-davis(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>, Дмитрий Сарафанников <dsarafan(at)yandex-team(dot)ru>, Владимир Бородин <root(at)simply(dot)name> |
| Subject: | Re: Special role for subscriptions |
| Date: | 2019-03-20 02:11:34 |
| Message-ID: | E79B8828-6291-476D-82C1-577005D7B513@yandex-team.ru |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Hi!
> 13 марта 2019 г., в 22:55, Evgeniy Efimkin <efimkin(at)yandex-team(dot)ru> написал(а):
>
> I've prepare patch with new system role, i'm not sure about name, called it "pg_subscription_users".
> In that patch we don't check permissions on target tables, i don't know, should we check it?
Currently, user with pg_subscription_users can create subscription into any system table, can't they?
We certainly need to change it to more secure way.
Best regards, Andrey Borodin.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Wu, Fei | 2019-03-20 02:19:54 | RE: Willing to fix a PQexec() in libpq module |
| Previous Message | Michael Paquier | 2019-03-20 02:07:31 | Re: BUG #15668: Server crash in transformPartitionRangeBounds |