Tom Lane wrote:
> It's been perfectly clear since day one, and was reiterated as recently
> as today
> http://archives.postgresql.org/message-id/4B21757E.7090806@2ndquadrant.com
> that what the security community wants is row-level security.
I think David Quigley's comments from earlier today summarize the
situation better than I did:
"For our purposes in DoD we need the MAC Framework and the row based
access controls. But if a good starting point is to just do the access
control over the database objects, then it will be useful for some
commercial cases and some limited military cases"
So it's not without value even in its current "Lite" form. But there's
clearly a whole lot more use-cases that would benefit from a version
with row filtering.
--
Greg Smith 2ndQuadrant Baltimore, MD
PostgreSQL Training, Services and Support
greg@2ndQuadrant.com www.2ndQuadrant.com