Home > mailing lists

Re: Views, views, views: Summary of Arguments - Mailing list pgsql-hackers

From	Josh Berkus
Subject	Re: Views, views, views: Summary of Arguments
Date	May 13, 2005 16:30:47
Msg-id	200505130930.41662.josh@agliodbs.com Whole thread Raw
In response to	Re: Views, views, views: Summary of Arguments (Andrew Dunstan <andrew@dunslane.net>)
Responses	Re: Views, views, views: Summary of Arguments (Tom Lane <tgl@sss.pgh.pa.us>) Re: Views, views, views: Summary of Arguments (Andrew Dunstan <andrew@dunslane.net>)
List	pgsql-hackers

Tree view

Andrew, Merlin,

> My approach was to remove all significant permissions (including on the
> catalog) from public and regrant them to a pseudopublic group,
> comprising designated users. The designated users would notice no
> difference at all, while everyone else would be able to see only what
> was explicitly granted to them. But there would be lots of testing and
> thinking to be done before releasing it into the wild :-)

<plug>Doesn't it seem like a really complete set of system views (based on 
information_schema or otherwise) would potentially allow securing the 
pg_catalog?</plug>

-- 
Josh Berkus
Aglio Database Solutions
San Francisco

pgsql-hackers by date:

From: Andrew Dunstan
Date: 13 May 2005, 15:50:05
Subject: Re: Views, views, views: Summary of Arguments

From: Tom Lane
Date: 13 May 2005, 16:58:08
Subject: Re: Views, views, views: Summary of Arguments

Re: Views, views, views: Summary of Arguments - Mailing list pgsql-hackers

Previous

Next