Re: Views, views, views: Summary of Arguments

From: Andrew Dunstan <andrew(at)dunslane(dot)net>
To: josh(at)agliodbs(dot)com
Cc: pgsql-hackers(at)postgresql(dot)org
Subject: Re: Views, views, views: Summary of Arguments
Date: 2005-05-13 17:34:12
Message-ID: 4284E514.8040408@dunslane.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

Josh Berkus wrote:

>Andrew,
>
>
>
>>Not really, no. It would just be one more thing that my hardening script
>>had to remove permissions from.
>>
>>
>
>Hmmm ... even though the sysviews check users' permissions? That was one of
>our ideas behind making it "safer than the system catalogs".
>
>

It might be safer, but that doesn't hit my target at all. I am aiming at
a zero-knowledge user, i.e. one who cannot discover anything at all
about the db. The idea is that even if subvert can subvert a client and
get access to the db the amount of metadata they can discover is as
close to zero as possible.

cheers

andrew

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Josh Berkus 2005-05-13 17:42:26 Re: Catalog Security WAS: Views, views, views: Summary of Arguments
Previous Message Josh Berkus 2005-05-13 17:13:18 Re: Views, views, views: Summary of Arguments