Hi Ho!
--- On Thu, 10/30/08, Tom Lane <tgl@sss.pgh.pa.us> wrote:
> Because it'd be extremely difficult to do otherwise
> (given the way that
> CREATE DATABASE works)
Understood.
> and it's not at all clear that
> it'd be a good
> idea anyway.
Can it be cleared up by looking at the kind of security breaches that can be abused by users that are not the owner of
theDB when the public schema is owned by the owner of the DB (i.e., not a SUPERUSER) instead of by "postgres"?
I am hoping to get a list of achilles' heels that I need to consider when assigning the ownership of a public schema of
aDB to its owner that is not a SUPERUSER from the default "postgres".
> regards, tom lane
Best regards,
Eus