Home > mailing lists

Re: BUG #1150: grant options not properly checked - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #1150: grant options not properly checked
Date	May 11, 2004 13:37:44
Msg-id	9027.1084282629@sss.pgh.pa.us Whole thread Raw
In response to	BUG #1150: grant options not properly checked ("PostgreSQL Bugs List" <pgsql-bugs@postgresql.org>)
Responses	Re: BUG #1150: grant options not properly checked
List	pgsql-bugs

Tree view

"PostgreSQL Bugs List" <pgsql-bugs@postgresql.org> writes:
> It seems that GRANT ALL ON SCHEMA does not properly
> check for grantor rights.

What's happening is that pg_namespace_aclcheck() allows the operation
if you have GRANT OPTION for *any* of the rights to be granted.  The
same problem exists for all object types.

I am not sure whether we should refuse the operation or just narrow
the set of privileges to those that are grantable per GRANT OPTION.
Peter, any thoughts?

            regards, tom lane

pgsql-bugs by date:

From: "PostgreSQL Bugs List"
Date: 11 May 2004, 12:18:35
Subject: BUG #1151: Initdb fails ...

From: Tom Lane
Date: 11 May 2004, 14:54:38
Subject: Re: BUG #1150: grant options not properly checked

Re: BUG #1150: grant options not properly checked - Mailing list pgsql-bugs

Previous

Next