Home > mailing lists

Re: [HACKERS] Postgres acl (fwd) - Mailing list pgsql-hackers

From	Bruce Momjian
Subject	Re: [HACKERS] Postgres acl (fwd)
Date	January 6, 1998 16:42:17
Msg-id	199801061842.NAA01656@candle.pha.pa.us Whole thread Raw
In response to	Re: [HACKERS] Postgres acl (fwd) (The Hermit Hacker <scrappy@hub.org>)
Responses	Re: [HACKERS] Postgres acl (fwd) (The Hermit Hacker <scrappy@hub.org>)
List	pgsql-hackers

Tree view

>
> On Tue, 6 Jan 1998, Bruce Momjian wrote:
>
> > Can someone who has permission to create databases be trusted not to
> > delete others?  If we say no, how do we make sure they can change
> > pg_database rows on only databases that they own?
>
>     deleting a database is accomplished using 'drop database', no?
> Can the code for that not be modified to see whether the person dropping
> the database is the person that owns it *or* pgsuperuser?

It already does the check, but issues an SQL from the C code to delete
from pg_database.  I believe any user who can create a database can
issue the same SQL command from psql, bypassing the drop database
checks, no?

--
Bruce Momjian
maillist@candle.pha.pa.us

pgsql-hackers by date:

From: "Vadim B. Mikheev"
Date: 06 January 1998, 16:35:53
Subject: Re: [HACKERS] I want to change libpq and libpgtcl for better handling of large query results

From: The Hermit Hacker
Date: 06 January 1998, 16:47:18
Subject: Re: [HACKERS] Postgres acl (fwd)

Re: [HACKERS] Postgres acl (fwd) - Mailing list pgsql-hackers

Previous

Next