Quick Links

Re: Any way to have CREATEUSER privs without having all privs?

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	"ezra epstein" <ee_newsgroup_post(at)prajnait(dot)com>
Cc:	pgsql-general(at)postgresql(dot)org
Subject:	Re: Any way to have CREATEUSER privs without having all privs?
Date:	2004-01-03 23:40:57
Message-ID:	6596.1073173257@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

"ezra epstein" <ee_newsgroup_post(at)prajnait(dot)com> writes:
> Basically I want a login user that can then set session auth... to any other
> user but otherwise has no privs.

You have not thought this through.

If user X can become any other user Y, then he can do anything that is
doable within the system. Pretending that he is not superuser is
pointless.

regards, tom lane

In response to

Any way to have CREATEUSER privs without having all privs? at 2004-01-02 15:18:45 from ezra epstein

Responses

Re: Any way to have CREATEUSER privs without having all privs? at 2004-01-07 05:04:01 from Ezra Epstein

Browse pgsql-general by date

	From	Date	Subject
Next Message	Bruce Momjian	2004-01-04 01:07:21	Re: license issue
Previous Message	Marc G. Fournier	2004-01-03 23:30:16	Network Problems over past 48hrs