Home > mailing lists

Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 == - Mailing list pgsql-general

From	Tom Lane
Subject	Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 ==
Date	August 27, 2007 15:40:23
Msg-id	1100.1188229218@sss.pgh.pa.us Whole thread Raw
In response to	Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 == (Joseph S <jks@selectacast.net>)
Responses	Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 == ("Joshua D. Drake" <jd@commandprompt.com>) Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 == (Joseph S <jks@selectacast.net>)
List	pgsql-general

Tree view

Joseph S <jks@selectacast.net> writes:
>> Tom Lane committed:
>> - Restrict pg_relation_size to relation owner, pg_database_size to DB
>> owner, and pg_tablespace_size to superusers.  Perhaps we could
>> weaken the first case to just require SELECT privilege, but that
>> doesn't work for the other cases, so use ownership as the common
>> concept.
>>
> Is there going to be a way to turn this off easily?

No.  If you want to make an argument for weaker restrictions than these,
argue away, but security restrictions that can be "easily turned off"
are no security at all.

            regards, tom lane

pgsql-general by date:

From: Tom Lane
Date: 27 August 2007, 15:37:50
Subject: Re: Out of Memory - 8.2.4

From: "Trevor Talbot"
Date: 27 August 2007, 15:48:25
Subject: Re: [HACKERS] Undetected corruption of table files

Re: [ANNOUNCE] == PostgreSQL Weekly News - August 26 2007 == - Mailing list pgsql-general

Previous

Next