Home > mailing lists

Re: Any way to have CREATEUSER privs without having all privs? - Mailing list pgsql-general

From	Tom Lane
Subject	Re: Any way to have CREATEUSER privs without having all privs?
Date	January 3, 2004 22:41:51
Msg-id	6596.1073173257@sss.pgh.pa.us Whole thread Raw
In response to	Any way to have CREATEUSER privs without having all privs? ("ezra epstein" <ee_newsgroup_post@prajnait.com>)
List	pgsql-general

Tree view

"ezra epstein" <ee_newsgroup_post@prajnait.com> writes:
> Basically I want a login user that can then set session auth... to any other
> user but otherwise has no privs.

You have not thought this through.

If user X can become any other user Y, then he can do anything that is
doable within the system.  Pretending that he is not superuser is
pointless.

            regards, tom lane

pgsql-general by date:

From: A E
Date: 03 January 2004, 22:36:05
Subject: Functions Returning Record Datatype

From: "Chris Travers"
Date: 03 January 2004, 23:52:20
Subject: Re: why the need for is null?

Re: Any way to have CREATEUSER privs without having all privs? - Mailing list pgsql-general

Previous

Next