Quick Links

Re: How to control pg_catalog results for each users?

From:	Ron <ronljohnsonjr(at)gmail(dot)com>
To:	pgsql-general(at)lists(dot)postgresql(dot)org
Subject:	Re: How to control pg_catalog results for each users?
Date:	2023-01-30 13:18:35
Message-ID:	d7305b7d-9ea4-8c96-45ee-300bd7e6d344@gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

On 1/30/23 02:41, Laurenz Albe wrote:
> On Mon, 2023-01-30 at 14:00 +0900, hirose shigeo(廣瀬繁雄 □SWC○ACT) wrote:
>> all users can get the all of table name , table structure and other
>> information from pg_catalog, which is considered a security problem.
> The belief that restricting that will improve security goes by the name
> of "security by obscurity", which is usually not considered robust.

Your description sounds a whole lot like PostgreSQL's row level security.

--
Born in Arizona, moved to Babylonia.

In response to

Re: How to control pg_catalog results for each users? at 2023-01-30 08:41:53 from Laurenz Albe

Browse pgsql-general by date

	From	Date	Subject
Next Message	Laurenz Albe	2023-01-30 13:19:50	Re: Does statement_timeout apply to commit?
Previous Message	David Rowley	2023-01-30 12:52:51	Re: alter table impact on view