Dave Page <dpage@pgadmin.org> writes:
> If you find a hole in the boat, the preferred option is to fix it, not
> to say "meh, well another won't hurt".
My understanding is that there's no way to fix it. If you're superuser
you have the keys to the kingdom. That's it.
And that's why it's very important that as many as possible of our
feature set works without requiring superuser.
> That wouldn't address my concern, which is preventing someone with
> only DB server superuser access from enabling the feature.
There's nothing I've heard of allowing you to think implementing a
restricted security access for superusers is ever going to fly.
Regards,
--
Dimitri Fontaine
http://2ndQuadrant.fr PostgreSQL : Expertise, Formation et Support