Home > mailing lists

Re: Security Issue.. - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Re: Security Issue..
Date	April 15, 2002 04:01:26
Msg-id	Pine.LNX.4.30.0204150014090.717-100000@peter.localdomain Whole thread Raw
In response to	Re: Security Issue.. (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

Tom Lane writes:

> Peter Eisentraut <peter_e@gmx.net> writes:
> > For instance, if you create a view
> >     CREATE VIEW bar AS SELECT * FROM foo;
> > then the statement
> >     SELECT * FROM bar;
> > needs privileges to read "foo".
>
> This works just fine, thank you: the privileges are checked against the
> owner of the view.

OK, nevermind.  The case I was referring to was that the CREATE VIEW
statement succeeds and the privileges are checked when the view is
queried.  This is not in compliance with SQL, but it doesn't seem to
matter that much.

-- 
Peter Eisentraut   peter_e@gmx.net

pgsql-hackers by date:

From: "Rod Taylor"
Date: 15 April 2002, 03:57:52
Subject: Re: [PATCHES] ANSI Compliant Inserts

From: Curt Sampson
Date: 15 April 2002, 04:45:20
Subject: Re: 7.3 schedule

Re: Security Issue.. - Mailing list pgsql-hackers

Previous

Next