Home > mailing lists

Re: It's time to support GRANT SELECT,UPDATE,...,...,... ON database.* to username - Mailing list pgsql-general

From	dterrors@hotmail.com
Subject	Re: It's time to support GRANT SELECT,UPDATE,...,...,... ON database.* to username
Date	October 4, 2007 22:33:52
Msg-id	1191354154.636648.54380@w3g2000hsg.googlegroups.com Whole thread Raw
In response to	Re: It's time to support GRANT SELECT,UPDATE,...,...,... ON database.* to username (Chris Browne <cbbrowne@acm.org>)
List	pgsql-general

Tree view

On Oct 2, 12:06 pm, Chris Browne <cbbro...@acm.org> wrote:
> The trouble is that "GRANT ON *.*" seems to be a lazy shortcut for
> someone who *thinks* they're trying to secure their system, but that
> would rather say "well, everything" as opposed to looking at things
> properly.
>
> That is, if you don't know what tables and other objects need to be
> secured, how can you have any idea that you're handling the securing
> of your application properly???

I wonder if you would've given the same response 40 years ago when
someone invented "chmod <perms> *"

"If you don't know what files and other objects need to be secured,
how can you have any idea that you're handling the securing of your
file system properly???"

What if I DO know what tables I have, and I DO want them to all have
the same perms?

pgsql-general by date:

From: Tom Lane
Date: 04 October 2007, 21:50:52
Subject: Re: ERROR: variable not found in subplan target lists

From: joynes
Date: 04 October 2007, 22:33:53
Subject: Re: Find out encoding of data

Re: It's time to support GRANT SELECT,UPDATE,...,...,... ON database.* to username - Mailing list pgsql-general

Previous

Next