Home > mailing lists

Re: Controlling access to Sequences - Mailing list pgsql-sql

From	Tom Lane
Subject	Re: Controlling access to Sequences
Date	February 1, 2003 02:45:51
Msg-id	4328.1044074602@sss.pgh.pa.us Whole thread Raw
In response to	Re: Controlling access to Sequences (Matthew Horoschun <mhoroschun@canprint.com.au>)
Responses	Re: Controlling access to Sequences
List	pgsql-sql

Tree view

Matthew Horoschun <mhoroschun@canprint.com.au> writes:
> Should I just avoid SEQUENCES altogether and use the OIDs under normal 
> circumstances and the MAX( id ) + 1 style thing when I need a 
> human-usable number?

I don't think so.  MAX()+1 has more than enough problems of its own.

The real bottom line here is that you should not allow untrustworthy
users any sort of direct access to SQL commands of any kind.  They
should only be allowed access to an application that issues suitably
restricted SQL commands on their behalf.
        regards, tom lane

pgsql-sql by date:

From: Matthew Horoschun
Date: 01 February 2003, 02:29:23
Subject: Re: Controlling access to Sequences

From: "Rajesh Kumar Mallah."
Date: 01 February 2003, 03:08:09
Subject: Re: Which version is this?

Re: Controlling access to Sequences - Mailing list pgsql-sql

Previous

Next