Home > mailing lists

Re: Row-security writer-side checks proposal - Mailing list pgsql-hackers

From	Stephen Frost
Subject	Re: Row-security writer-side checks proposal
Date	November 5, 2013 16:57:22
Msg-id	20131105140131.GV2706@tamriel.snowman.net Whole thread Raw
In response to	Re: Row-security writer-side checks proposal (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: Row-security writer-side checks proposal (Robert Haas <robertmhaas@gmail.com>) Re: Row-security writer-side checks proposal (Craig Ringer <craig@2ndquadrant.com>)
List	pgsql-hackers

Tree view

* Robert Haas (robertmhaas@gmail.com) wrote:
> Now maybe that's fine.  But given that, I think it's pretty important
> that we get the syntax right.  Because if you're adding a feature
> primarily to add a more convenient syntax, then the syntax had better
> actually be convenient.

I agree that we want to get the syntax correct, but also very clear as
it's security related and we don't want anyone surprised by what happens
when they use it.  The idea, as has been discussed in the past, is to
then allow tying RLS in with SELinux and provide MAC.
Thanks,
    Stephen

pgsql-hackers by date:

From: Pavel Golub
Date: 05 November 2013, 16:46:14
Subject: exit_horribly vs exit_nicely in pg_dump

From: Oskari Saarenmaa
Date: 05 November 2013, 17:05:29
Subject: Re: [PATCH] configure: add git describe output to PG_VERSION when building a git tree

Re: Row-security writer-side checks proposal - Mailing list pgsql-hackers

Previous

Next