Home > mailing lists

Re: Why Postgresql Public Schema Is Not Owned By The DB Owner By Default - Mailing list pgsql-general

From	Eus
Subject	Re: Why Postgresql Public Schema Is Not Owned By The DB Owner By Default
Date	October 30, 2008 04:43:22
Msg-id	248241.57163.qm@web37606.mail.mud.yahoo.com Whole thread Raw
In response to	Re: Why Postgresql Public Schema Is Not Owned By The DB Owner By Default (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-general

Tree view

Hi Ho!

--- On Thu, 10/30/08, Tom Lane <tgl@sss.pgh.pa.us> wrote:

> Because it'd be extremely difficult to do otherwise
> (given the way that
> CREATE DATABASE works)

Understood.

> and it's not at all clear that
> it'd be a good
> idea anyway.

Can it be cleared up by looking at the kind of security breaches that can be abused by users that are not the owner of
theDB when the public schema is owned by the owner of the DB (i.e., not a SUPERUSER) instead of by "postgres"? 

I am hoping to get a list of achilles' heels that I need to consider when assigning the ownership of a public schema of
aDB to its owner that is not a SUPERUSER from the default "postgres". 

>             regards, tom lane

Best regards,
Eus

pgsql-general by date:

From: Abdul Rahman
Date: 30 October 2008, 04:42:05
Subject: Re: Replication with slony-I

From: Grant Allen
Date: 30 October 2008, 04:50:32
Subject: Re: Are there plans to add data compression feature to postgresql?

Re: Why Postgresql Public Schema Is Not Owned By The DB Owner By Default - Mailing list pgsql-general

Previous

Next