Home > mailing lists

Re: TODO item: set proper permissions on non-system schemas - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: TODO item: set proper permissions on non-system schemas
Date	September 1, 2005 17:27:08
Msg-id	3201.1125594811@sss.pgh.pa.us Whole thread Raw
In response to	Re: TODO item: set proper permissions on non-system schemas (Andrew Dunstan <andrew@dunslane.net>)
List	pgsql-hackers

Tree view

Andrew Dunstan <andrew@dunslane.net> writes:
> Tom Lane wrote:
>> Change the ownership of public in template1 to be a "dbadmin" group.
>> Grant membership in "dbadmin" to all the DB owners.  End of problem.

> Won't that suddenly grant the owner of foo_db  dbadmin rights in bar_db? 
> That seems to violate the principle of least surprise.

I'm assuming here that the various dbowners aren't even allowed to
connect to each others' databases.
        regards, tom lane

pgsql-hackers by date:

From: Josh Berkus
Date: 01 September 2005, 17:25:14
Subject: Re: Remove xmin and cmin from frozen tuples

From: Steve Atkins
Date: 01 September 2005, 17:34:34
Subject: Re: Call for 7.5 feature completion

Re: TODO item: set proper permissions on non-system schemas - Mailing list pgsql-hackers

Previous

Next