On 5-4-2013 17:42, Dimitry Sibiryakov wrote: > 05.04.2013 17:34, Doug Chamberlin wrote: >> I would implement it so that if a user does not have SELECT permission on a >> field that any >> mention of that field in a SELECT statement is an outright error for that >> user. Just as if >> the field did not exist. > > Bad idea, IMHO. I predict a lot of support request "I see in SHOW TABLE > that field > exists, but select throw me error that it doesn't". Error message must > clearly state its > reason: "not enough rights to read this field".
The question is: if you don't have permissions for a column, are you allowed to know of its existence? Mark -- Mark Rotteveel ------------------------------------------------------------------------------ Minimize network downtime and maximize team effectiveness. Reduce network management and security costs.Learn how to hire the most talented Cisco Certified professionals. Visit the Employer Resources Portal http://www.cisco.com/web/learning/employer_resources/index.html Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
