Home > mailing lists

Re: problem permission on view - Mailing list pgsql-hackers

From	Greg Stark
Subject	Re: problem permission on view
Date	September 17, 2004 02:58:40
Msg-id	871xh1q0t8.fsf@stark.xeocode.com Whole thread Raw
In response to	Re: problem permission on view (Josh Berkus <josh@agliodbs.com>)
List	pgsql-hackers

Tree view

Josh Berkus <josh@agliodbs.com> writes:

> As said, I discussed this with Gaetano on IRC, and am not sure why things are 
> set up the way they are.    If a user has permission on a view, shouldn't 
> that include permission on any functions executed by the view?    If not, why 
> not?

Then all someone would have to do to bypass security on a function would be to
define a function of their own calling it?

If I execute shell script that calls a setuid root-only binary that doesn't
give me permission to execute the root-only binary...

-- 
greg

pgsql-hackers by date:

From: Gavin Sherry
Date: 17 September 2004, 02:49:03
Subject: Re: subtransaction assert failure

From: Tom Lane
Date: 17 September 2004, 02:58:45
Subject: Re: problem permission on view

Re: problem permission on view - Mailing list pgsql-hackers

Previous

Next