From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
---|---|
To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Fabien COELHO <coelho(at)cri(dot)ensmp(dot)fr> |
Cc: | pgsql-bugs(at)postgresql(dot)org |
Subject: | Re: BUG #1150: grant options not properly checked |
Date: | 2004-05-13 22:47:29 |
Message-ID: | 200405140047.29390.peter_e@gmx.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-bugs |
Tom Lane wrote:
> After that, you get to the General Rules, which pretty clearly say
> that trying to grant privileges you don't have grant option for is
> just a warning and not an error condition. (Such privileges will not
> be in the set of "identified privilege descriptors".)
>
> AFAICS the specification for REVOKE is exactly parallel.
>
> So the existing code is still wrong, but not in quite the way we
> thought.
>
> I'd be the first to say that this aspect of the spec is a tad
> bizarre. Does anyone want to argue for ignoring the spec and
> implementing "saner" behavior? It's not like we are super close to
> spec compliance for privileges otherwise ...
My experience is that violating the spec in this area just leads to
other problems. Does anyone know what IBM and Oracle do here? AFAICT,
they're the ones writing the specs.
From | Date | Subject | |
---|---|---|---|
Next Message | Martin Pitt | 2004-05-13 23:52:29 | Re: Fix for buffer overflow ready [was: Fwd: Bug#247306: odbc-postgresql: SIGSEGV with long inputs (> 10000 bytes)] |
Previous Message | Peter Eisentraut | 2004-05-13 17:43:09 | Re: Fix for buffer overflow ready [was: Fwd: Bug#247306: odbc-postgresql: SIGSEGV with long inputs (> 10000 bytes)] |