From: | Stephen Frost <sfrost(at)snowman(dot)net> |
---|---|
To: | Joshua Brindle <method(at)manicmethod(dot)com> |
Cc: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Josh Berkus <josh(at)agliodbs(dot)com>, Gregory Stark <stark(at)enterprisedb(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com>, Simon Riggs <simon(at)2ndQuadrant(dot)com>, Ron Mayer <rm_pg(at)cheapcomplexdevices(dot)com>, "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>, Merlin Moncure <mmoncure(at)gmail(dot)com>, "Jonah H(dot) Harris" <jonah(dot)harris(at)gmail(dot)com>, Bruce Momjian <bruce(at)momjian(dot)us>, Bernd Helmle <mailings(at)oopsware(dot)de>, Peter Eisentraut <peter_e(at)gmx(dot)net>, pgsql-hackers(at)postgresql(dot)org |
Subject: | Re: 8.4 release planning |
Date: | 2009-01-27 19:55:54 |
Message-ID: | 20090127195554.GQ8123@tamriel.snowman.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
* Joshua Brindle (method(at)manicmethod(dot)com) wrote:
> They are separate. If you look at the patches you'll see a pgace part,
> this is where the core interfaces to the security backends, and you'll
> see a rowacl backend and an sepgsql backend.
Right, guess it wasn't clear to me that the PGACE bits for row-level
access control could be used independently of SELinux (and maybe even on
systems that don't have SELinux..?).
> Personally I'd like to see all of the access control moved out to use
> pgace, including the standard DAC permissions but I doubt that would
> never happen.
Yeah... That's a whole 'nother discussion.
Stephen
From | Date | Subject | |
---|---|---|---|
Next Message | Zdenek Kotala | 2009-01-27 20:00:02 | Re: pg_upgrade project status |
Previous Message | Simon Riggs | 2009-01-27 19:52:36 | Re: 8.4 release planning |