On Sat, May 14, 2005 at 08:55:17AM -0400, Stephen Frost wrote:
> * Christopher Kings-Lynne (chriskl@familyhealth.com.au) wrote:
> > >It bothers me a great deal that I can't control very easily what a given
> > >user can see when they connect over ODBC or via phppgadmin in terms of
> > >schemas, tables and columns. I fixed this in application code in
> > >phppgadmin but that's clearly insufficient since it doesn't do anything
> > >for the other access methods.
> >
> > Hackers - we get an email about information hiding in shared
> > postgresql/phppgadmin installations at least once a fortnight :)
>
> I agree with this- it needs to be dealt with and fixed already, once and
> for all.
Given that the newsysviews all base visibility on granted permissions,
would they do the job for you?
--
Jim C. Nasby, Database Consultant decibel@decibel.org
Give your computer some brain candy! www.distributed.net Team #1828
Windows: "Where do you want to go today?"
Linux: "Where do you want to go tomorrow?"
FreeBSD: "Are you guys coming, or what?"
