Home > mailing lists

BUG #9364: why pg_user_mappings can query by nonsuperuser? - Mailing list pgsql-bugs

From	digoal@126.com
Subject	BUG #9364: why pg_user_mappings can query by nonsuperuser?
Date	February 27, 2014 09:51:12
Msg-id	20140227020735.29533.92858@wrigleys.postgresql.org Whole thread Raw
List	pgsql-bugs

Tree view

The following bug has been logged on the website:

Bug reference:      9364
Logged by:          digoal.zhou
Email address:      digoal@126.com
PostgreSQL version: 9.3.3
Operating system:   CentOS 6.x
Description:

pg_user_mappings view has user and passowrd infomation , I think it is not
security that can query by the mapped user which is not superuser. why ?
I revoke the query privilege from PUBLIC, and the foreign table used normal,
so why not revoke default?

pgsql-bugs by date:

From: Cyriac Joseph Maliyil
Date: 27 February 2014, 09:51:02
Subject: Re: BUG #9333: The PostgreSQL service stops unexpectedly

From: Tom Lane
Date: 27 February 2014, 10:02:48
Subject: Re: BUG #9366: Default MAXVALUE is incorrect for sequence object of serial type

BUG #9364: why pg_user_mappings can query by nonsuperuser? - Mailing list pgsql-bugs

Previous

Next