BUG #9364: why pg_user_mappings can query by nonsuperuser?

From: digoal(at)126(dot)com
To: pgsql-bugs(at)postgresql(dot)org
Subject: BUG #9364: why pg_user_mappings can query by nonsuperuser?
Date: 2014-02-27 02:07:35
Message-ID: 20140227020735.29533.92858@wrigleys.postgresql.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-bugs

The following bug has been logged on the website:

Bug reference: 9364
Logged by: digoal.zhou
Email address: digoal(at)126(dot)com
PostgreSQL version: 9.3.3
Operating system: CentOS 6.x
Description:

pg_user_mappings view has user and passowrd infomation , I think it is not
security that can query by the mapped user which is not superuser. why ?
I revoke the query privilege from PUBLIC, and the foreign table used normal,
so why not revoke default?

Browse pgsql-bugs by date

  From Date Subject
Next Message kashi 2014-02-27 03:45:10 BUG #9366: Default MAXVALUE is incorrect for sequence object of serial type
Previous Message Jeff Janes 2014-02-27 00:33:22 Re: BUG #9342: CPU / Memory Run-away