| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | PostgreSQL Development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Default permissions of system catalogs |
| Date: | 2002-01-07 22:35:43 |
| Message-ID: | Pine.LNX.4.30.0201071727480.8360-100000@peter.localdomain |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Currently, system catalogs (pg_*) are assumed to be readable by anyone if
the privileges are NULL, as opposed to ordinary tables, which assume only
owner access if the privileges are NULL.
I'm currently working on privileges for functions (see also Nov. 13
message, which apparently stunned everyone into silence), which will need
some sort of similar arrangement, only there's no obvious way to find out
if a function is a "system function".
I think the best solution would be to drop the pg_* exception and
explicitly grant the right privileges to each table and function in
initdb.
Objections?
--
Peter Eisentraut peter_e(at)gmx(dot)net
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2002-01-07 23:39:19 | Re: ecpg compile error on AIX |
| Previous Message | Thomas Lockhart | 2002-01-07 22:31:35 | Re: RC1 time? |