Home > mailing lists

Re: GRANT USAGE on FOREIGN SERVER exposes passwords - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: GRANT USAGE on FOREIGN SERVER exposes passwords
Date	February 5, 2015 19:21:02
Msg-id	CA+TgmoaNZPi++rcvNGt_qpo68thf0yNPXA+tZWJBtyWmkFD23g@mail.gmail.com Whole thread Raw
In response to	Re: GRANT USAGE on FOREIGN SERVER exposes passwords (Stephen Frost <sfrost@snowman.net>)
Responses	Re: GRANT USAGE on FOREIGN SERVER exposes passwords (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On Thu, Feb 5, 2015 at 10:48 AM, Stephen Frost <sfrost@snowman.net> wrote:
>> If she's got dblink access, she can run arbitrary
>> SQL queries on the remote server anyway, which is all the password
>> would let her do.  Also, she could use dblink to run ALTER ROLE foo
>> PASSWORD '...' on the remote server, and then she'll *definitely* know
>> the password.
>
> And I thought this was about FDW options and not about dblink, really..

The OP is pretty clearly asking about dblink.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Tom Lane
Date: 05 February 2015, 18:59:17
Subject: Re: Possible problem with pgcrypto

From: Stephen Frost
Date: 05 February 2015, 19:23:52
Subject: Re: GRANT USAGE on FOREIGN SERVER exposes passwords

Re: GRANT USAGE on FOREIGN SERVER exposes passwords - Mailing list pgsql-hackers

Previous

Next