Home > mailing lists

Re: Permissions problem - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Permissions problem
Date	February 12, 2002 17:36:01
Msg-id	22935.1013540773@sss.pgh.pa.us Whole thread Raw
In response to	Permissions problem (noy <noyda@isoco.com>)
List	pgsql-hackers

Tree view

noy <noyda@isoco.com> writes:
> However, any user can make a select or update in the table "accounts".

Surely not.

test71=# select version();                            version
------------------------------------------------------------------PostgreSQL 7.1.3 on hppa2.0-hp-hpux10.20, compiled by
GCC2.95.3
 
(1 row)

test71=# create user foo;
CREATE USER
test71=# create user bar;
CREATE USER
test71=# \c - foo
You are now connected as new user foo.
test71=> create table accounts (f1 int);
CREATE
test71=> insert into accounts values(1);
INSERT 1587112 1
test71=> revoke all on accounts from public;
CHANGE
test71=> \z accounts
Access privileges for database "test71" Table   | Access privileges
----------+-------------------accounts | {"=","foo=arwR"}
(1 row)

test71=> select * from accounts;f1
---- 1
(1 row)

test71=> \c - bar
You are now connected as new user bar.
test71=> select * from accounts;
ERROR:  accounts: Permission denied.
test71=> update accounts set f1 = 2;
ERROR:  accounts: Permission denied.
test71=> 


Perhaps your "any user" is actually a superuser?
        regards, tom lane

pgsql-hackers by date:

From: noy
Date: 12 February 2002, 16:52:38
Subject: Permissions problem

From: Amit Kumar Khare
Date: 12 February 2002, 18:12:57
Subject: Add free-behind capability for large sequential scans

Re: Permissions problem - Mailing list pgsql-hackers

Previous

Next