Home > mailing lists

Re: Updates of SE-PostgreSQL 8.4devel patches (r1704) - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Updates of SE-PostgreSQL 8.4devel patches (r1704)
Date	March 10, 2009 12:35:41
Msg-id	26232.1236688517@sss.pgh.pa.us Whole thread Raw
In response to	Re: Updates of SE-PostgreSQL 8.4devel patches (r1704) (Heikki Linnakangas <heikki.linnakangas@enterprisedb.com>)
List	pgsql-hackers

Tree view

Heikki Linnakangas <heikki.linnakangas@enterprisedb.com> writes:
> If we drop the goal of trying to restrict what a superuser can do, is 
> the patch still useful?

> One idea is to add a single "is superuser" permission to sepgsql.

The agreement back in January was that what we'd consider for 8.4 is
a patch that adds SELinux-driven enforcement of permissions checks
that already exist in Postgres.  Allowing the above seems to me to
fit within that charter, but this other stuff definitely doesn't.
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 10 March 2009, 12:05:03
Subject: Re: Sampling Profler for Postgres

From: Andrew Gierth
Date: 10 March 2009, 12:39:30
Subject: Re: Prepping to break every past release...

Re: Updates of SE-PostgreSQL 8.4devel patches (r1704) - Mailing list pgsql-hackers

Previous

Next