Home > mailing lists

Re: [v9.4] row level security - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [v9.4] row level security
Date	August 29, 2013 20:18:35
Msg-id	9407.1377796701@sss.pgh.pa.us Whole thread Raw
In response to	Re: [v9.4] row level security (Josh Berkus <josh@agliodbs.com>)
List	pgsql-hackers

Tree view

Josh Berkus <josh@agliodbs.com> writes:
> It's one thing to day "we can't solve this covert channel issue right
> now in this patch", but saying "we don't plan to solve it at all" is
> likely to doom the patch.

> I'm not sure what the solution would be, exactly.  Deny permission for
> EXPLAIN on certain tables?

That would close only one covert channel.  Others were already pointed out
upthread, and I'll bet there are more ...
        regards, tom lane

pgsql-hackers by date:

From: Stephen Frost
Date: 29 August 2013, 20:08:22
Subject: Re: [v9.4] row level security

From: Josh Berkus
Date: 29 August 2013, 20:22:18
Subject: Re: [v9.4] row level security

Re: [v9.4] row level security - Mailing list pgsql-hackers

Previous

Next