Home > mailing lists

Re: restrict pg_stat_ssl to superuser? - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: restrict pg_stat_ssl to superuser?
Date	February 19, 2019 18:57:52
Msg-id	1d1bf3a7-955e-ce6b-de99-b900136ca789@2ndquadrant.com Whole thread Raw
In response to	Re: restrict pg_stat_ssl to superuser? (Michael Paquier <michael@paquier.xyz>)
Responses	Re: restrict pg_stat_ssl to superuser? (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
List	pgsql-hackers

Tree view

On 2019-02-18 04:58, Michael Paquier wrote:
> On Fri, Feb 15, 2019 at 02:04:59PM +0100, Peter Eisentraut wrote:
>> We could remove default privileges from pg_stat_get_activity().  Would
>> that be a problem?
> 
> I don't think so, still I am wondering about the impact that this
> could have for monitoring tools calling it directly as we document
> it.. 

Actually, this approach isn't going to work anyway, because function
permissions in a view are checked as the current user, not the view owner.

-- 
Peter Eisentraut              http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services

pgsql-hackers by date:

From: Robert Haas
Date: 19 February 2019, 18:45:47
Subject: Re: Some thoughts on NFS

From: Magnus Hagander
Date: 19 February 2019, 18:59:35
Subject: Re: Some thoughts on NFS

Re: restrict pg_stat_ssl to superuser? - Mailing list pgsql-hackers

Previous

Next