From: | Andrew Dunstan <andrew(at)dunslane(dot)net> |
---|---|
To: | |
Cc: | Postgresql Hackers <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: zero knowledge users |
Date: | 2004-04-06 15:50:46 |
Message-ID: | 4072D1D6.40000@dunslane.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
Rod Taylor wrote:
>On Tue, 2004-04-06 at 10:23, Andrew Dunstan wrote:
>
>
>>I have been doing some experimentation for a series of articles I am
>>writing, and want to create a user with as little privilege as possible
>>who can still do the things I explicitly want him/her to be able to do.
>>
>>In particular, I wanted to be able to deny any useful access to the
>>metadata contained in catalogs and the information schema.
>>
>>
>
>Out of curiosity, why would you deny them access to the information schema?
>
>
>
It might be overkill. Basically I was operating on the principle of
"everything not explicitly allowed is forbidden". I will experiment some
more.
cheers
andrew
From | Date | Subject | |
---|---|---|---|
Next Message | Andrew Dunstan | 2004-04-06 16:04:48 | Re: [HACKERS] logging statement levels |
Previous Message | Tom Lane | 2004-04-06 15:48:25 | Re: Function to kill backend |