Home > mailing lists

Re: minor feature request: Secure defaults during - Mailing list pgsql-hackers

From	Andrew Dunstan
Subject	Re: minor feature request: Secure defaults during
Date	September 18, 2006 17:59:30
Msg-id	450EDE64.6000501@dunslane.net Whole thread Raw
In response to	Re: minor feature request: Secure defaults during (Pascal Meunier <pmeunier@cerias.net>)
Responses	Re: minor feature request: Secure defaults during ("Jim C. Nasby" <jimn@enterprisedb.com>)
List	pgsql-hackers

Tree view

Pascal Meunier wrote:
> Thanks for answering;  I appreciate it, as well as the efforts of all the
> people who contributed to this database that I now use in my projects.
>
> However, I feel that making a decision based on the number of prior and
> possible future complaints is a poor excuse to not do the right thing.  A
> low number of prior complaints simply suggests lax security audits of
> default behaviors. 
>   

At the very least we would need a way of getting the current behaviour, 
if we are not to break existing applications.

People have a reasonable expectation that a dump and reload will work, 
and that can't be dismissed as cavalierly as this.

Maybe a config file option would do the trick, or maybe an option to 
pg_dump / pg_dumpall to make it generate the extra GRANT statement that 
would be required.

cheers

andrew

pgsql-hackers by date:

From: "Jim C. Nasby"
Date: 18 September 2006, 17:56:49
Subject: Re: Interesting CREATE TABLE AS misbehavior

From: Tom Lane
Date: 18 September 2006, 18:01:21
Subject: Re: minor feature request: Secure defaults during

Re: minor feature request: Secure defaults during - Mailing list pgsql-hackers

Previous

Next