Skip site navigation (1) Skip section navigation (2)

Re: grant/revoke bug with delete/update

From: Jerome Alet <alet(at)unice(dot)fr>
To: pgsql-bugs(at)postgresql(dot)org
Subject: Re: grant/revoke bug with delete/update
Date: 2000-06-13 07:20:26
Message-ID: (view raw, whole thread or download thread mbox)
Lists: pgsql-bugspgsql-hackers
On Fri, 9 Jun 2000, Bruce Momjian wrote:

> Are we addressing this?

Yes, please do.

And please don't forget the following: 

when dropping an user postgresql (actually the superuser must do it
manually) should first revoke all user's permissions on all databases,
because the deleted userid is reused on the next create user so the new
user inherits all permissions from the deleted user => may be very very
bad (an example of what can be done is not necessary I suppose ?)

> > And for the bug report I posted on Feb 23rd on "drop user" which keeps the
> > user's acl in the database, and the deleted user id being reused, I've not
> > done anything, but I consider this a major problem. Please consider it for
> > a next version.

Jerome ALET - alet(at)unice(dot)fr -
Faculte de Medecine de Nice - - Tel: 04 93 37 76 30 
28 Avenue de Valombrose - 06107 NICE Cedex 2 - FRANCE

In response to

pgsql-hackers by date

Next:From: Bruce MomjianDate: 2000-06-13 07:33:49
Subject: Re: \h behaviour - strange ?
Previous:From: Bruce MomjianDate: 2000-06-13 07:18:01
Subject: Re: memory management suggestion

pgsql-bugs by date

Next:From: Bruce MomjianDate: 2000-06-13 07:41:19
Subject: Re: Small bug with numeric in 7.0 (also in 6.5.3)
Previous:From: Kevin P. NealDate: 2000-06-13 03:17:45
Subject: Re: Minimal patches for PostgreSQL 7.0b3 on NetBSD/alpha 1.4.1....

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group