Home > mailing lists

Re: Streaming replication as a separate permissions - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: Streaming replication as a separate permissions
Date	December 23, 2010 19:31:10
Msg-id	27452.1293136261@sss.pgh.pa.us Whole thread Raw
In response to	Re: Streaming replication as a separate permissions (Magnus Hagander <magnus@hagander.net>)
List	pgsql-hackers

Tree view

Magnus Hagander <magnus@hagander.net> writes:
> On Thu, Dec 23, 2010 at 16:15, Tom Lane <tgl@sss.pgh.pa.us> wrote:
>> I think only superusers should be allowed to change the flag.

> That was certainly not intentional - and doesn't work that way for me
> at least, unless I broke it right before I submitted it.

> oh hang on.. Yeah, it's allowing anybody *that has CREATE ROLE*
> privilege to do it, I think. And I agree that's wrong and should be
> fixed. But I can't see it allowing anybody at all to do it - am I
> misreading the code?

Ah, sorry, yeah there are probably CREATE ROLE privilege checks
somewhere upstream of here.  I was expecting to see a privilege check
added by the patch itself, and did not, so I complained.
        regards, tom lane

pgsql-hackers by date:

From: "Li Jie"
Date: 23 December 2010, 19:08:41
Subject: Re: Why is sorting on two columns so slower than sortingon one column?

From: Pavel Stehule
Date: 23 December 2010, 19:31:40
Subject: WIP: plpgsql - foreach in

Re: Streaming replication as a separate permissions - Mailing list pgsql-hackers

Previous

Next