Home > mailing lists

Re: How to give security to pg_catalogs - Mailing list pgsql-general

From	Tom Lane
Subject	Re: How to give security to pg_catalogs
Date	March 29, 2010 14:53:14
Msg-id	12981.1269874340@sss.pgh.pa.us Whole thread Raw
In response to	How to give security to pg_catalogs (raghavendra t <raagavendra.rao@gmail.com>)
Responses	Re: How to give security to pg_catalogs (raghavendra t <raagavendra.rao@gmail.com>)
List	pgsql-general

Tree view

raghavendra t <raagavendra.rao@gmail.com> writes:
> How to give security to the pg_catalogs, as these are freely alterable and
> cause some security problem. Here i mean to say, as a superuser we can
> delete the rows from a catalogs are alter the catalogs, is there anyway to
> put restriction or any promting before doing anything to catalogs.
> Any suggestions for this ?

Don't give superuser privileges to anyone who's dumb enough to try such
things on a production database.

This is much like the fact that, say, root can trivially destroy any
Unix filesystem.  You could imagine trying to put enough training wheels
on superuserdom to prevent such things, but it's not really practical
and any attempt would get in the way of many legitimate uses.

            regards, tom lane

pgsql-general by date:

From: Ole Tange
Date: 29 March 2010, 14:52:30
Subject: insert into test_b (select * from test_a) with different column order

From: Tom Lane
Date: 29 March 2010, 15:00:51
Subject: Re: Splitting text column to multiple rows

Re: How to give security to pg_catalogs - Mailing list pgsql-general

Previous

Next