Home > mailing lists

Re: advisory locks and permissions - Mailing list pgsql-hackers

From	Josh Berkus
Subject	Re: advisory locks and permissions
Date	September 21, 2006 03:15:05
Msg-id	200609202015.22103.josh@agliodbs.com Whole thread Raw
In response to	Re: advisory locks and permissions ("Merlin Moncure" <mmoncure@gmail.com>)
Responses	Re: advisory locks and permissions (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

All,

> I vote for locking down to superuser access (lets be frank here: I
> would estimate 90%+ database installatons run with the application as
> root) so we are not losing much.

Not in my experience.   Note that making them superuser-only pretty much puts 
them out of the hands of hosted applications.

How simple would it be to limit the number of advisory locks available to a 
single request?  That would at least make the DOS non-trivial.  Or to put in 
a handle (GUC?) that allows turning advisory locks off?

Hmmm ... I'll bet I could come up with other ways to use generate_series in a 
DOS, even without advisory locks ...

-- 
Josh Berkus
PostgreSQL @ Sun
San Francisco

pgsql-hackers by date:

From: Bruce Momjian
Date: 21 September 2006, 03:14:06
Subject: Re: Release notes

From: Bruce Momjian
Date: 21 September 2006, 03:18:05
Subject: Re: advisory locks and permissions

Re: advisory locks and permissions - Mailing list pgsql-hackers

Previous

Next