Quick Links

Re: Things I don't like about \du's "Attributes" column

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Pavel Luzanov <p(dot)luzanov(at)postgrespro(dot)ru>
Cc:	Jim Nasby <jim(dot)nasby(at)gmail(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com>, pgsql-hackers(at)lists(dot)postgresql(dot)org
Subject:	Re: Things I don't like about \du's "Attributes" column
Date:	2024-01-23 01:25:56
Message-ID:	3875934.1705973156@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

I wrote:
> I think expecting the pg_roles view to change for this is problematic.
> You can't have that in the back branches, so with this patch psql
> will show something different against a pre-17 server than later
> versions. At best, that's going to be confusing.

Actually, even more to the point: while this doesn't expose the
contents of a role's password, it does expose whether the role
*has* a password to every user in the installation. I doubt
that that's okay from a security standpoint. It'd need debate
at the least.

regards, tom lane

In response to

Re: Things I don't like about \du's "Attributes" column at 2024-01-23 01:18:36 from Tom Lane

Responses

Re: Things I don't like about \du's "Attributes" column at 2024-01-23 02:22:48 from David G. Johnston

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Peter Smith	2024-01-23 01:32:35	Re: Make documentation builds reproducible
Previous Message	James Coleman	2024-01-23 01:21:23	Re: Opportunistically pruning page before update