Hi!
We are 2 french students in computer science. We are now working on
postgres and we have met some problems.
We wonder if there's a bug for Postgres on Debian (kernel 2.2.13) to
create a user when we are a DBA (it means we are supposed to have the right to
create databases and users).
When we enter:
> create user dba1 createdb createuser;
and after:
> select * from pg_user;
the result is :
> usename |usesysid|usecreatedb|usetrace|usesuper|usecatupd|passwd |valuntil
> ------+------+--------+-----+-------+------+------+------
> postgres| 31|t |t |t |t |********
> dba1 | 32 |t |f |t |f
>|********|
> | |
> | |
> | |
> ---------------->Why is it false???? >
And what do "usetrace" and "usecatupd" mean?
What can we do when those bits are "true"?
Then as the DBA create a user, we read:
> template1=> create user x nocreatedb nocreateuser;
> ERROR: defineUser: user "dba1" does not have SELECT and INSERT privilege for
>"pg_shadow"
>
Why?
Postgres has given to the DBA the right to create user, to have SELECT and
INSERT privilege on pg_shadow.
Why can we read easily the passwords in the file pg_pwd?
Is there a way to prevent everyone to read those passwords?
It would be very nice if you could help us.
Thank U.
Matthieu VEROVE & Igor MUSE
