Home > mailing lists

Re: ALTER ROLE/DATABASE RESET ALL versus security - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: ALTER ROLE/DATABASE RESET ALL versus security
Date	February 19, 2010 17:31:23
Msg-id	6804.1266604249@sss.pgh.pa.us Whole thread Raw
In response to	Re: ALTER ROLE/DATABASE RESET ALL versus security (Alvaro Herrera <alvherre@commandprompt.com>)
Responses	Re: ALTER ROLE/DATABASE RESET ALL versus security
List	pgsql-hackers

Tree view

Alvaro Herrera <alvherre@commandprompt.com> writes:
> Tom Lane wrote:
>> It looks to me like the code in AlterSetting() will allow an ordinary
>> user to blow away all settings for himself.  Even those that are for
>> SUSET variables and were presumably set for him by a superuser.  Isn't
>> this a security hole?  I would expect that an unprivileged user should
>> not be able to change such settings, not even to the extent of
>> reverting to the installation-wide default.

> Yes, it is, but this is not a new hole.  This works just fine in 8.4
> too:

So I'd argue for changing it in 8.4 too.
        regards, tom lane

pgsql-hackers by date:

From: Alvaro Herrera
Date: 19 February 2010, 17:22:38
Subject: Re: ALTER ROLE/DATABASE RESET ALL versus security

From: Robert Haas
Date: 19 February 2010, 17:34:59
Subject: Re: PGXS: REGRESS_OPTS=--load-language=plpgsql

Re: ALTER ROLE/DATABASE RESET ALL versus security - Mailing list pgsql-hackers

Previous

Next