more...
---------- Forwarded message ----------
Date: Sun, 15 Nov 1998 22:55:04 -0700 (MST)
From: Dax Kelson <dkelson-list-pgsql-admin@inconnect.com>
To: pgsql-admin@postgreSQL.org
Subject: Re: [ADMIN] New to PostgreSQL, is this a DoS?
On Sun, 15 Nov 1998, Dax Kelson wrote:
> Is this a denial of service? A remote user can connect and create as many
> phantom tables as they want which could possibly interfere with normal
> operation? How would the admin even know the name of the table to drop?
>
> If I connect locally as user "postgres" and I can successfully create and
> see the table.
>
> Is it normal behaviour that user "postgres" must first create the tables
> for them to be useable?
After more testing I found futher strange behavior. After locally
user "postgres" creates any table in the database, any remote users can
then create any new table, and it isn't "phantom" (can see it/use it).
Is this desirable and/or expected behavior? It doesn't seem to me that it
is.
