From: | "Mario Weilguni" <mario(dot)weilguni(at)icomedias(dot)com> |
---|---|
To: | "pgsql-hackers" <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: Large object security |
Date: | 2002-04-19 10:11:48 |
Message-ID: | D143FBF049570C4BB99D962DC25FC2D2178114@freedom.icomedias.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
would'nt it be much better to expand pg_largeobject to have another column "src_oid" (or similar), containing the OID of the referencing table from pg_class, and when accessing large objects take the privilieges from the referencing class?
-----Ursprüngliche Nachricht-----
Von: Damon Cokenias [mailto:lists(at)mtn-palace(dot)com]
Gesendet: Freitag, 19. April 2002 11:04
An: pgsql-hackers
Betreff: [HACKERS] Large object security
Hi all,
I see there's a TODO item for large object security, it's a feature I'd really like to see. I'm willing to put in the time to write a patch, but know far to little about postgres internals and history to just dive in. Has there been any discussion on this list about what this feature should be or how it might be implemented? I saw a passing reference to "LOB LOCATORs" in the list archives, but that was all.
What's a LOB LOCATOR ?
What about giving each large object its own permission flags? ex:
GRANT SELECT ON LARGE OBJECT 10291 TO USER webapp;
GRANT SELECT, DELETE, UPDATE ON LARGE OBJECT 10291 TO USER admin;
Default permission flags (and INSERT permissions) would be set at the table level. All objects without specific permissions would use the table rules. This allows for backward compatibility and convenience.
I think per-object security is important. A user shouldn't be able to get at another user's data just by guessing the right OID. Ideally, users without permission would not know there were objects in the database they were not allowed to see.
I can also imagine a security scheme that uses rule/trigger syntax to give the user a hook to provide her own security functions. I haven't thought that through, though.
Any thoughts?
-Damon
---------------------------(end of broadcast)---------------------------
TIP 5: Have you checked our extensive FAQ?
From | Date | Subject | |
---|---|---|---|
Next Message | Damon Cokenias | 2002-04-19 10:31:00 | Re: Large object security |
Previous Message | Maarten.Boekhold | 2002-04-19 09:27:05 | Re: Index Scans become Seq Scans after VACUUM ANALYSE |