| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Andrzej Mazurkiewicz <andrzej(at)mazurkiewicz(dot)org> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Inheritance of foregn key constraints. |
| Date: | 2014-03-22 15:13:56 |
| Message-ID: | 18757.1395501236@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Andrzej Mazurkiewicz <andrzej(at)mazurkiewicz(dot)org> writes:
>> So in other words, somebody could (accidentally or maliciously) break the
>> constraint by dropping one of its implementation triggers. I doubt that's
>> acceptable.
> The present postgres behavior ALLOWS accidental or malicious break the
> constraint by dropping one of its implementation triggers. Please ref. to the
> following example.
> The following script has been run by the postgres user.
Well, right there you lost me, because superusers are exempt from all
permissions checks by definition; and in particular, direct manipulations
of the system catalogs by superusers are always out of scope for
discussions of what the system should try to protect itself against.
(Try "delete from pg_proc;" in a scratch database sometime.)
My point is that without the internal dependency, a normal user could do
standard SQL commands (ie DROP TRIGGER) and break the FK that way.
That's the case that's not acceptable.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Piotr Stefaniak | 2014-03-22 15:53:27 | Re: Review: plpgsql.extra_warnings, plpgsql.extra_errors |
| Previous Message | Thom Brown | 2014-03-22 15:13:26 | Re: Partial index locks |